| 제목 | kanwangzjm funiture master branch Open Redirect |
|---|
| 설명 | In the project funiture, the endpoint /login.do and /user/login.page lack validation for the redirect URL.
The application trusts user-controlled input for redirect targets (HttpServletRequest parameter 'ret') may redirect victims to attacker-controlled domains, facilitating phishing or social engineering attacks.
Project Link: https://github.com/kanwangzjm/funiture
Affected Version: master branch
Affected API: /login.do and /user/login.page
Code Location: /funiture-master/src/main/java/com/app/mvc/acl/servlet/LoginServlet.java:32 and /funiture-master/src/main/java/com/app/mvc/acl/controller/UserController.java:25 |
|---|
| 원천 | ⚠️ https://github.com/ShenxiuSec/cve-proofs/blob/main/POC-20250510-01.md |
|---|
| 사용자 | ShenxiuSecurity (UID 84374) |
|---|
| 제출 | 2025. 05. 10. AM 02:21 (1 년도 ago) |
|---|
| 모더레이션 | 2025. 05. 16. PM 04:37 (7 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 309306 [kanwangzjm Funiture 까지 71ca0fb0658b3d839d9e049ac36429207f05329b Login LoginServlet.java doPost ret Redirect] |
|---|
| 포인트들 | 20 |
|---|