reports/GO-2021-0237.yaml - vulndb - Git at Google

 module: github.com/AndrewBurian/powermux
 versions:
 - fixed: v1.1.1
 description: |
   Attackers may be able to craft phishing links and other open
   redirects by exploiting PowerMux's trailing slash redirection
   feature.  This may lead to users being redirected to untrusted
   sites after following an attacker crafted link.
 cves:
 - CVE-2021-32721
 symbols:
 - Route.execute
 links:
   pr: https://github.com/AndrewBurian/powermux/pull/42
   commit: https://github.com/AndrewBurian/powermux/commit/5e60a8a0372b35a898796c2697c40e8daabed8e9
   context:
   - https://github.com/AndrewBurian/powermux/security/advisories/GHSA-mj9r-wwm8-7q52
	module: github.com/AndrewBurian/powermux
	versions:
	- fixed: v1.1.1
	description: \|
	Attackers may be able to craft phishing links and other open
	redirects by exploiting PowerMux's trailing slash redirection
	feature. This may lead to users being redirected to untrusted
	sites after following an attacker crafted link.
	cves:
	- CVE-2021-32721
	symbols:
	- Route.execute
	links:
	pr: https://github.com/AndrewBurian/powermux/pull/42
	commit: https://github.com/AndrewBurian/powermux/commit/5e60a8a0372b35a898796c2697c40e8daabed8e9
	context:
	- https://github.com/AndrewBurian/powermux/security/advisories/GHSA-mj9r-wwm8-7q52