Open Redirect

2023-01-1902:32:05

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

open redirect

vulnerable software

url parameter

0.002 Low

EPSS

Percentile

53.4%

JSON

symbiote/silverstripe-seed is vulnerable to open redirect. The vulnerability exists due to insufficient checks for URL parameter SecurityLoginExtension.php file, which allows an attacker to redirect the user to an arbitrary website via a crafted URL.

CPENameOperatorVersion
symbiote/silverstripe-seedeq6.0.2
symbiote/silverstripe-seedeq6.0.2

CPE	Name	Operator	Version
	symbiote/silverstripe-seed	eq	6.0.2
	symbiote/silverstripe-seed	eq	6.0.2

References

github.com/advisories/GHSA-wm32-3r4m-jvcc

github.com/symbiote/silverstripe-seed/commit/b065ebd82da53009d273aa7e989191f701485244

github.com/symbiote/silverstripe-seed/releases/tag/6.0.3

vuldb.com/?ctiid.217626

vuldb.com/?id.217626

0.002 Low

EPSS

Percentile

53.4%

JSON

Related for VERACODE:38917