Express Open Redirect vulnerability

GHSA-jj78-5fmv-mv28 · CVE-2024-9266

Published Oct 3, 2024 · Modified Oct 9, 2024

Description

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Express. This vulnerability affects the use of the Express Response object. This issue impacts Express: from 3.4.5 before 4.0.0-rc1.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-9266
PACKAGE https://github.com/expressjs/express
WEB https://github.com/expressjs/express/compare/3.4.4...3.4.5
WEB https://www.herodevs.com/vulnerability-directory/cve-2024-9266

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes