CVE-2020-26938

URL Redirection to Untrusted Site ('Open Redirect') in npm/oauth2-server

Identifiers

GHSA-4rg6-fm25-gc34, CVE-2020-26938

Package Slug

npm/oauth2-server

Vulnerability

URL Redirection to Untrusted Site ('Open Redirect')

Description

In oauth2-server (aka node-oauth2-server) through 3.1.1, the value of the redirecturi parameter received during the authorization and token request is checked against an incorrect URI pattern ("[a-zA-Z][a-zA-Z0-9+.-]+:") before making a redirection. This allows a malicious client to pass an XSS payload through the redirecturi parameter while making an authorization request. NOTE: this vulnerability is similar to CVE-2020-7741.

Affected Versions

All versions up to 3.1.1

Solution

Unfortunately, there is no solution available yet.

Last Modified

2022-09-19

source