RSS   Podatności dla 'Sourcegraph'   RSS

2020-04-30
 
CVE-2020-12283

CWE-601
 

 
Sourcegraph before 3.15.1 has a vulnerable authentication workflow because of improper validation in the SafeRedirectURL method in cmd/frontend/auth/redirect.go, such as for the //foo//example.com substring.

 


Copyright 2021, cxsecurity.com

 

Back to Top