Skip to main content

URL Redirection to Untrusted Site ('Open Redirect')

CVE-2020-36627

Severity Medium
Score 6.1/10

Summary

A vulnerability was found in Macaron i18n prior to 0.5.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file "i18n.go". The manipulation leads to Open Redirect. The attack can be launched remotely. The identifier VDB-216745 was assigned to this vulnerability.

  • LOW
  • NETWORK
  • LOW
  • CHANGED
  • REQUIRED
  • NONE
  • LOW
  • NONE

CWE-601 - Open Redirect

An open redirect attack employs a URL parameter, HTML refresh tags, or a DOM based location change to exploit the trust of a vulnerable domain to direct the users to a malicious website. The attack could lead to higher severity vulnerabilities such as unauthorized access control, account takeover, XSS, and more.

Advisory Timeline

  • Published