PT-2022-28032 · Rdiffweb · Rdiffweb

Published

2022-12-23

·

Updated

2023-01-05

·

CVE-2022-4720

CVSS v4.0

8.8

High

VectorAV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N
Name of the Vulnerable Software and Affected Versions rdiffweb versions prior to 2.5.5
Description The issue is an Open Redirect in the GitHub repository ikus060/rdiffweb.
Recommendations For versions prior to 2.5.5, update to version 2.5.5 or later to resolve the issue.

Exploit

Fix

Open Redirect

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-601

Related Identifiers

CVE-2022-4720
GHSA-H5WP-JRQC-CWWX
PYSEC-2022-43006

Affected Products

Rdiffweb