Uploaded image for project: 'SonarQube'
  1. SonarQube
  2. SONAR-11475

Fix open redirect vulnerability

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 6.7.6, 7.5
    • Component/s: None
    • Labels:
      None
    • Edition:
      Community
    • Production Notes:
      None

      Description

      The vulnerability is present at login.
      Redirects can be used to point to an external website or to execute malicious code.

      The vulnerability is fixed in SonarQube 6.7.6 LTS and in latest version 7.5.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              julien.lancelot Julien Lancelot
              Reporter:
              christophe.levis Christophe Levis
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Dates

                Due:
                Created:
                Updated:
                Resolved: