PT-2022-13486 · Medialize · Uri.Js

Huydopp

Published

2022-03-06

Updated

2022-03-11

CVE-2022-0868

CVSS v3.1

8.0

High

Vector

AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions medialize/uri.js versions prior to 1.19.10 urijs versions prior to 1.19.10

Description The issue is an Open Redirect in the GitHub repository medialize/uri.js. This is the result of a bypass for the fix to a previous issue.

Recommendations For medialize/uri.js versions prior to 1.19.10, update to version 1.19.10 or later. For urijs versions prior to 1.19.10, update to version 1.19.10 or later.

Exploit

Fix

Open Redirect

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-601

Related Identifiers

CVE-2022-0868

GHSA-8H2F-7JC4-7M3M

Affected Products

Uri.Js

PT-2022-13486 · Medialize · Uri.Js

CVE-2022-0868

Weakness Enumeration

Related Identifiers

Affected Products

References · 10