oss-sec mailing list archives
CVE Request: graphite-web: open redirect
From: Manuel Mancera <sinkmanu () gmail com>
Date: Wed, 17 Feb 2016 18:53:57 +0100
Hello, I found and reported an open redirect vulnerability in graphite-web. Through this vulnerability an attacker could redirect to a legitimate user to a malicious website. https://github.com/graphite-project/graphite-web/issues/1441 <https://blog.filippo.io/bleichenbacher-06-signature-forgery-in-python-rsa/> Can you assign a CVE for this issue? Regards, Manuel Mancera
Current thread:
- CVE Request: graphite-web: open redirect Manuel Mancera (Feb 17)
- <Possible follow-ups>
- Re: CVE Request: graphite-web: open redirect Manuel Mancera (Feb 17)
- Re: CVE Request: graphite-web: open redirect cve-assign (Feb 17)
- Re: CVE Request: graphite-web: open redirect Manuel Mancera (Feb 18)
- Re: CVE Request: graphite-web: open redirect cve-assign (Feb 17)