DiracX-Web is vulnerable to attack through an Open Redirect on its login page
An attacker can forge a request to redirect an authenticated user to any arbitrary website.
Advisories for Npm/@Dirac-Grid/Diracx-Web-Components package
2025
An attacker can forge a request to redirect an authenticated user to any arbitrary website.