Vulnerabilities

1 via 1 paths

Dependencies

62

Source

GitHub

Commit

5d31403a

Find, fix and prevent vulnerabilities in your code.

Severity
  • 1
Status
  • 1
  • 0
  • 0

medium severity

Open Redirect

  • Vulnerable module: got
  • Introduced through: magister-openid@0.1.7

Detailed paths

  • Introduced through: magister.js@simplyGits/MagisterJS#5d31403a441d6036a16d4a1909743be3351019d4 magister-openid@0.1.7 openid-client@3.15.10 got@9.6.0

Overview

Affected versions of this package are vulnerable to Open Redirect due to missing verification of requested URLs. It allowed a victim to be redirected to a UNIX socket.

Remediation

Upgrade got to version 11.8.5, 12.1.0 or higher.

References