URL Redirection to Untrusted Site ('Open Redirect')
CVE-2020-36627
Summary
A vulnerability was found in Macaron i18n prior to 0.5.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file "i18n.go". The manipulation leads to Open Redirect. The attack can be launched remotely. The identifier VDB-216745 was assigned to this vulnerability.
- LOW
- NETWORK
- LOW
- CHANGED
- REQUIRED
- NONE
- LOW
- NONE
CWE-601 - Open Redirect
An open redirect attack employs a URL parameter, HTML refresh tags, or a DOM based location change to exploit the trust of a vulnerable domain to direct the users to a malicious website. The attack could lead to higher severity vulnerabilities such as unauthorized access control, account takeover, XSS, and more.
Advisory Timeline
- Published