EPSS
Percentile
46.5%
github.com/caddyserver/caddy is vulnerable to open redirect attacks. A remote unauthenticated attacker is able to redirect users to arbitrary web URLs by tricking the victim to click on specifically crafted links.
github.com/caddyserver/caddy/commit/3fe2c73dd04f7769a9d9673236cb94b79ac45659
github.com/caddyserver/caddy/pull/4499
lists.fedoraproject.org/archives/list/[email protected]/message/CP2VIUT5IKA3OKM6YWA5LTLJ2GTEIH7C/