CVE-2023-49438

Published
View on NVD ↗
CVSS v3
6.1
MEDIUM
CVSS v2
N/A
Affected
2
PROJECTS

Description

An open redirect vulnerability in the python package Flask-Security-Too <=5.3.2 allows attackers to redirect unsuspecting users to malicious sites via a crafted URL by abusing the ?next parameter on the /login and /register routes.

Flask-Middleware/flask-security
Flask-Middleware/flask-security
Quick and simple security for Flask applications
GitHubGitHub
brandon-t-elliott/CVE-2023-49438
brandon-t-elliott/CVE-2023-49438
CVE-2023-49438 - Open Redirect Vulnerability in Flask-Security-Too
GitHubGitHub
5