helix-front is vulnerable to open redirect. The vulnerability exists due to the improper sanitisation of request headers when embedding the UI, allowing an attacker to redirect users to malicious URLs
CPE | Name | Operator | Version |
---|---|---|---|
apache helix :: front end | le | 1.0.4 | |
apache helix :: front end | le | 1.0.4 |