EPSS
Percentile
30.3%
rdiffweb is vulnerable to open redirect. The vulnerability exists because hyperlinks are not properly validated in the library which allows an attacker to inject a malicious link and send a phishing email invitation to users.
github.com/advisories/GHSA-h5wp-jrqc-cwwx
github.com/ikus060/rdiffweb/commit/6afaae56a29536f0118b3380d296c416aa6d078d
huntr.dev/bounties/339687af-6e25-4ad8-823d-c097f607ea70
huntr.dev/bounties/339687af-6e25-4ad8-823d-c097f607ea70/