Open Redirect

2022-03-0706:55:13

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

urijs

open redirect

scheme delimiter

EPSS

0.001

Percentile

30.0%

JSON

urijs is vulnerable to open redirect. Lack of proper handling of excessive colons in scheme delimiter allows an attacker to parse malicious URL to redirect the user.

References

github.com/medialize/uri.js/commit/a8166fe02f3af6dc1b2b888dcbb807155aad9509

huntr.dev/bounties/5f4db013-64bd-4a6b-9dad-870c296b0b02

EPSS

0.001

Percentile

30.0%

JSON

Related for VERACODE:34547