2 matches found
CVE-2022-23078
In habitica versions v4.119.0 through v4.232.2 are vulnerable to open redirect via the login page...
CVE-2022-23078
CVE-2022-23078 affects Habitica versions v4.119.0–v4.232.2. The connected sources describe an open redirect vulnerability exploitable via the login page, with the root cause attributed to input handling that allows redirection to arbitrary URLs. Impact is described as a partial confidentiality/in...