Lucene search

Veracode Vulnerability DatabaseVERACODE:7258

HistoryAug 08, 2018 - 6:22 a.m.

Open Redirection

2018-08-0806:22:12

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

JSON

github.com/gogs/gogs is vulnerable to open redirection attacks. The isValidRedirect function in routes/user/auth.go does not validate the initial /\\ substring in the URL, which allows remote attackers to redirect users to malicious websites and perform phishing attacks via the redirect_to parameter in user/login.

CPENameOperatorVersion
github.com/gogs/gogseqHEAD

CPE	Name	Operator	Version
	github.com/gogs/gogs	eq	HEAD

References

github.com/gogs/gogs/commit/8cf5fa60da6cf81b990650f141777209a383284c

github.com/gogs/gogs/issues/5364

github.com/gogs/gogs/pull/5365

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

JSON

Related for VERACODE:7258