cachecloud icon indicating copy to clipboard operation
cachecloud copied to clipboard
verified publisher icon sohutv

Open Redirect

Open QiAnXinCodeSafe opened this issue 4 years ago • 0 comments

https://github.com/sohutv/cachecloud/blob/f9dfc98eadcfd7d56821852ece0c73d14cb171e1/cachecloud-web/src/main/java/com/sohu/cache/web/controller/IndexController.java#L25-L32

Allowing unvalidated input to control the URL used in a redirect can aid phishing attacks.

In line 25, ‘redirectUrl’ is regarded to as tainted data,it will be affect line 32.

QiAnXinCodeSafe avatar Aug 03 '21 09:08 QiAnXinCodeSafe