CVE-2026-45307

Name of the Vulnerable Software and Affected Versions Speakr versions prior to 0.8.20-alpha

Description Speakr is a self-hosted web application for transcribing audio recordings. The is safe url() helper function, used to validate post-login redirect targets, incorrectly applies urljoin(request.host url, target) before parsing, while the controller passes the raw target to the redirect() function. This allows a scheme-relative input, such as ////evil.com, to be validated as a same-host URL but interpreted by the browser as a network-path-relative redirect to an external attacker-controlled host via the Location header.

Recommendations Update to version 0.8.20-alpha.