Vulnerability Report: GO-2021-0237
- CVE-2021-32721, GHSA-mj9r-wwm8-7q52
- Affects: github.com/AndrewBurian/powermux
- Published: Jan 11, 2022
- Modified: Jun 12, 2023
Attackers may be able to craft phishing links and other open redirects by exploiting PowerMux's trailing slash redirection feature. This may lead to users being redirected to untrusted sites after following an attacker crafted link.
Affected Packages
-
PathVersionsSymbols
-
before v1.1.1
Aliases
References
- https://github.com/AndrewBurian/powermux/pull/42
- https://github.com/AndrewBurian/powermux/commit/5e60a8a0372b35a898796c2697c40e8daabed8e9
- https://vuln.go.dev/ID/GO-2021-0237.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.