Insecure function isValidRedirect leads to open redirect vulnerability
#5364
Labels
isValidRedirect leads to open redirect vulnerability
#5364
Description
The function
isValidRedirectingogs/routes/user/auth.gois used in login action to validate if url is on the same site.If the
Locationheader startswith/\, it will be transformed to//by browsers.Check PoC here.

PoC gif:
A positive fix might looks like:
Discoverer: bluecatli from Tencent's Xuanwu Lab
The text was updated successfully, but these errors were encountered: