URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Apache Software Foundation Apache Helix UI component.This issue affects Apache Helix all releases from 0.8.0 to 1.0.4.
Solution: removed the the forward component since it was improper designed for UI embedding.
User please upgrade to 1.1.0 to fix this issue.
References
| Link | Resource |
|---|---|
| https://lists.apache.org/thread/lr74xtxxbb1t3dfn5qzzwl2xjr3qlbmh | Issue Tracking Vendor Advisory |
| https://lists.apache.org/thread/lr74xtxxbb1t3dfn5qzzwl2xjr3qlbmh | Issue Tracking Vendor Advisory |
Configurations
History
21 Nov 2024, 07:32
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://lists.apache.org/thread/lr74xtxxbb1t3dfn5qzzwl2xjr3qlbmh - Issue Tracking, Vendor Advisory |
07 Nov 2023, 03:56
| Type | Values Removed | Values Added |
|---|---|---|
| Summary | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Apache Software Foundation Apache Helix UI component.This issue affects Apache Helix all releases from 0.8.0 to 1.0.4. Solution: removed the the forward component since it was improper designed for UI embedding. User please upgrade to 1.1.0 to fix this issue. |
Information
Published : 2022-12-19 11:15
Updated : 2024-11-21 07:32
NVD link : CVE-2022-47500
Mitre link : CVE-2022-47500
CVE.ORG link : CVE-2022-47500
JSON object : View
Products Affected
apache
- helix
CWE
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')