oss-sec mailing list archives
Re: CVE Request: graphite-web: open redirect
From: Manuel Mancera <sinkmanu () gmail com>
Date: Wed, 17 Feb 2016 19:13:14 +0100
Sorry, the email was sent with HTML format and with a wrong link, the link with the vulnerability is: https://github.com/graphite-project/graphite-web/issues/1441 Regards, On 17/02/16 18:55, Manuel Mancera wrote:
Hello, I found and reported an open redirect vulnerability in graphite-web. Through this vulnerability an attacker could redirect to a legitimate user to a malicious website. https://github.com/graphite-project/graphite-web/issues/1441 <https://blog.filippo.io/bleichenbacher-06-signature-forgery-in-python-rsa/> Can you assign a CVE for this issue? Regards, Manuel Mancera
Current thread:
- CVE Request: graphite-web: open redirect Manuel Mancera (Feb 17)
- <Possible follow-ups>
- Re: CVE Request: graphite-web: open redirect Manuel Mancera (Feb 17)
- Re: CVE Request: graphite-web: open redirect cve-assign (Feb 17)
- Re: CVE Request: graphite-web: open redirect Manuel Mancera (Feb 18)
- Re: CVE Request: graphite-web: open redirect cve-assign (Feb 17)