Orange Forum
1 CVEs
product
Monthly
views/auth.go in Orange Forum 1.4.0 allows Open Redirection via the next parameter to /login or /signup. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Open Redirect
Orange Forum
NVD
GitHub
CVSS 3.0
6.1
EPSS
2.3%
EPSS 2%
CVSS 6.1
MEDIUM
POC
PATCH
This Month
views/auth.go in Orange Forum 1.4.0 allows Open Redirection via the next parameter to /login or /signup. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Open Redirect
Orange Forum
NVD
GitHub