CVE-2025-54066 DiracX-Web login page has Open Redirect vulnerability

DiracX-Web is a web application that provides an interface to interact with the DiracX services. Prior to version 0.1.0-a8, an attacker can forge a request that they can pass to redirect an authenticated user to another arbitrary website. In the login page, DiracX-Web has a redirect field which i...

PT-2025-29920 · Unknown · Diracx-Web

Name of the Vulnerable Software and Affected Versions: DiracX-Web versions prior to 0.1.0-a8 Description: DiracX-Web is a web application that provides an interface to interact with the DiracX services. An attacker can forge a request to redirect an authenticated user to an arbitrary website. The...