github.com/bitly/oauth2_proxy is vulnerable to open redirect attacks. Attackers are able to redirect users to other domains during the oAuth process by appending //
at the front of the url.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/bitly/oauth2_proxy | eq | 2.1 | |
github.com/bitly/oauth2_proxy | eq | HEAD |