Lucene search

K
githubGitHub Advisory DatabaseGHSA-XM3X-4PH3-3X9C
HistoryMay 15, 2024 - 9:39 p.m.

friendsofsymfony/oauth2-php open redirection in oauth

2024-05-1521:39:29
GitHub Advisory Database
github.com
11
oauth authentication
open redirection
vulnerability
security
software

AI Score

7.2

Confidence

Low

An open redirection vulnerability has been identified in the friendsofsymfony/oauth2-php library, which could potentially expose users to unauthorized redirects during the OAuth authentication process. This vulnerability has been addressed by implementing an exact check for the domain and port, ensuring more secure redirection.

Affected configurations

Vulners
Node
friendsofsymfonyoauth2-phpRange<1.3.0
VendorProductVersionCPE
friendsofsymfonyoauth2-php*cpe:2.3:a:friendsofsymfony:oauth2-php:*:*:*:*:*:*:*:*

AI Score

7.2

Confidence

Low