oils-js Web.js redirect
CVE-2021-4260

6.3MEDIUM

Key Information:

Vendor: Unspecified
Status: Oils-js
Vendor: CVE Published:; 19 December 2022

🔔 Create Unspecified Vulnerability Alert

What is CVE-2021-4260?

A vulnerability was found in oils-js. It has been declared as critical. This vulnerability affects unknown code of the file core/Web.js. The manipulation leads to open redirect. The attack can be initiated remotely. The name of the patch is fad8fbae824a7d367dacb90d56cb02c5cb999d42. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-216268.

Affected Version(s)

oils-js

References

https://github.com/mannyvergel/oils-js/commit/fad8fbae824...

https://vuldb.com/?id.216268

CVSS V3.1

Score:

6.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 19, 2022
Vulnerability Reserved
Dec 19, 2022