oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE Request: graphite-web: open redirect

From: Manuel Mancera <sinkmanu () gmail com>
Date: Wed, 17 Feb 2016 18:53:57 +0100
Hello,

I found and reported an open redirect vulnerability in graphite-web. 
Through this vulnerability an attacker could redirect to a legitimate user to a malicious website. 

https://github.com/graphite-project/graphite-web/issues/1441
<https://blog.filippo.io/bleichenbacher-06-signature-forgery-in-python-rsa/>

Can you assign a CVE for this issue?


Regards,

Manuel Mancera
Previous By Date Next
Previous By Thread Next

Current thread: