-
Notifications
You must be signed in to change notification settings - Fork 110
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Open Redirect In Login #1333
Comments
The vulnerable function:
|
What version is this against? |
3.4.0 version |
ok, thanks Looks like this was only hotfixed, 3.x |
Does this qualify for a CVE? |
3.4 is alpha, so not release. Probably not |
okay, cool. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I followed your previous issues and found that it has been already disclosed and closed as "mitigated" but I am still able to reproduce it.
In this scenario, an attacker can directly append "redirect" parameter to the login page URL request and after successful login, it redirects the user to arbitrary page.
The vulnerability is present because application still looks for redirect parameter in URL (in GetSimpleCMS-master\admin\inc\template_functions.php file) and if present, sets the redirection to specified path.
The text was updated successfully, but these errors were encountered: