firefly-iii is vulnerable to URL Redirection to Untrusted Site
References
Link | Resource |
---|---|
https://github.com/firefly-iii/firefly-iii/commit/8662dfa4c0f71efef61c31dc015c6f723db8318d | Patch Third Party Advisory |
https://huntr.dev/bounties/549a1040-9b5e-420b-9b80-20700dd9d592 | Exploit Patch Third Party Advisory |
Configurations
Information
Published : 2021-10-19 06:15
Updated : 2021-10-21 16:59
NVD link : CVE-2021-3851
Mitre link : CVE-2021-3851
JSON object : View
CWE
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')
Products Affected
firefly-iii
- firefly_iii