blob: 6d87ac955405a9c1ef261a3aa11b54fb2d7192c8 [file] [log] [blame]
module: github.com/AndrewBurian/powermux
versions:
- fixed: v1.1.1
description: |
Attackers may be able to craft phishing links and other open
redirects by exploiting PowerMux's trailing slash redirection
feature. This may lead to users being redirected to untrusted
sites after following an attacker crafted link.
cves:
- CVE-2021-32721
symbols:
- Route.execute
links:
pr: https://github.com/AndrewBurian/powermux/pull/42
commit: https://github.com/AndrewBurian/powermux/commit/5e60a8a0372b35a898796c2697c40e8daabed8e9
context:
- https://github.com/AndrewBurian/powermux/security/advisories/GHSA-mj9r-wwm8-7q52