CVE-2021-23387: URL Redirection to Untrusted Site (Open Redirect)

May 24, 2021 (updated May 28, 2021)

The package trailing-slash are vulnerable to Open Redirect via the use of trailing double slashes in the URL when accessing the vulnerable endpoint.

References

nvd.nist.gov/vuln/detail/CVE-2021-23387

Detect and mitigate CVE-2021-23387 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →