CVE-2022-4589

🗓️ 17 Dec 2022 13:09:15Reported by [email protected]Type

A vulnerability in cyface Terms and Conditions Module up to 2.0.9 allows remote attackers to launch an open redirect attack via function returnTo in termsandconditions/views.py, resulting in the need for an upgrade to version 2.0.10

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
OSV	Terms and Conditions Module vulnerable to Open Redirect	17 Dec 202215:30	–	osv
OSV	CVE-2022-4589	17 Dec 202213:15	–	osv
Github Security Blog	Terms and Conditions Module vulnerable to Open Redirect	17 Dec 202215:30	–	github
Cvelist	CVE-2022-4589 cyface Terms and Conditions Module views.py returnTo redirect	17 Dec 202200:00	–	cvelist
Veracode	Open Redirect	20 Dec 202206:19	–	veracode
Prion	Open redirect	17 Dec 202213:15	–	prion
CVE	CVE-2022-4589	17 Dec 202213:15	–	cve

Nvd

Node

django_terms_and_conditions_project django_terms_and_conditionsRange<2.0.10

Source	Link
vuldb	www.vuldb.com/
github	www.github.com/cyface/django-termsandconditions/releases/tag/v2.0.10
github	www.github.com/cyface/django-termsandconditions/pull/239
github	www.github.com/cyface/django-termsandconditions/commit/03396a1c2e0af95e12a45c5faef7e47a4b513e1a

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

17 Dec 2022 13:15Current

CVSS36.1

EPSS0.00058

CWE-601