Lucene search
Veracode Vulnerability DatabaseVERACODE:29805HistoryMar 24, 2021 - 3:43 a.m.
Open Redirect
2021-03-2403:43:03
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
0.001 Low
EPSS
Percentile
34.8%
typo3/cms-core is vulnerable to open redirect. The vulnerability exists through the missing check in GeneralUtility::sanitizeLocalUrl() that allowed any URLs that starts with // to be considered a local url, and hence allowed to be redirected.
Related
friendsofphp
friendsofphp
TYPO3-CORE-SA-2021-001: Open Redirection in Login Handling
2021-03-16 08:57:07
TYPO3-CORE-SA-2021-001: Open Redirection in Login Handling
2021-03-16 08:57:07
osv
osv
Open Redirection in Login Handling
2021-03-23 01:53:35
CVE-2021-21338
2021-03-23 02:15:12
BIT-typo3-2021-21338
2024-03-06 11:11:22
nvd
nvd
CVE-2021-21338
2021-03-23 02:15:12
typo3
typo3
Open Redirection in Login Handling
2021-03-16 00:00:00
cve
cve
CVE-2021-21338
2021-03-23 02:15:12
prion
prion
Design/Logic Flaw
2021-03-23 02:15:00
cvelist
cvelist
CVE-2021-21338 Open Redirection in Login Handling
2021-03-23 01:45:14
github
github
Open Redirection in Login Handling
2021-03-23 01:53:35
openvas
openvas