Open Redirection In URL

Impact: High

Description

Unvalidated redirects and forwards occur when a web application accepts untrusted input that could redirect the user to a URL provided within the input. Attackers exploit this vulnerability by manipulating the URL input to redirect users to malicious sites, leading to phishing scams and credential theft.

Recommendation

Update Django

References

CWE-601
django
OWASP 2021-A1
OWASP: Phishing
OWASP: Unvalidated Redirects and Forwards Cheat Sheet

👉 You might also like:

Unvalidated Redirection - Vulnerability

Apache mod_jk Access Control Bypass - CVE-2018-11759

Apache Struts OGNL expression RCE S2-057 - CVE-2018-11776

Drupal 'Drupalgeddon2' Remote Code Execution - CVE-2018-7600

Last updated on May 13, 2024

Open Redirection In URL

Description

Recommendation

References

This issue is available in SmartScanner Professional