Open Redirect

🗓️ 18 Mar 2022 17:07:55Reported by GitHub Advisory DatabaseType

Open Redirect vulnerability impacting installations using default Hostname Identification and tenants with 'force_https'. Patched in version 5.7.

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 174
OSV	GHSA-4R8Q-GV9J-3XX6 Open Redirect	18 Mar 202217:55	–	osv
OSV	CVE-2021-32645	27 May 202117:15	–	osv
OSV	USN-3787-1 tomcat7, tomcat8 vulnerability	10 Oct 201814:32	–	osv
OSV	CVE-2018-11784	4 Oct 201813:29	–	osv
OSV	GHSA-5Q99-F34M-67GC Apache Tomcat Open Redirect vulnerability	17 Oct 201816:31	–	osv
OSV	SUSE-SU-2018:3393-1 Security update for tomcat	24 Oct 201811:03	–	osv
OSV	SUSE-SU-2018:3935-1 Security update for tomcat6	28 Nov 201816:12	–	osv
OSV	RHSA-2019:0485 Red Hat Security Advisory: tomcat security update	13 Sep 202416:54	–	osv
OSV	UBUNTU-CVE-2018-11784	4 Oct 201800:00	–	osv
OSV	DLA-1544-1 tomcat7 - security update	14 Oct 201800:00	–	osv

Vulners

Node

hyn multi-tenantRange5.6.0–5.7.2

Source	Link
github	www.github.com/tenancy/multi-tenant/security/advisories/GHSA-4r8q-gv9j-3xx6
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-32645
github	www.github.com/tenancy/multi-tenant/commit/9c837a21bccce9bcaeb90033ef200d84f0d9e164
packagist	www.packagist.org/packages/hyn/multi-tenant
webmasters	www.webmasters.googleblog.com/2009/01/open-redirect-urls-is-your-site-being.html
github	www.github.com/advisories/GHSA-4r8q-gv9j-3xx6

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

18 Mar 2022 17:55Current

0.9Low risk

Vulners AI Score0.9

CVSS25.8

CVSS34.3 - 6.1

EPSS0.87814

CWE-601