CVE-2024-42353: Urljoin Open Redirect
Passing an unvalidated, non-constant value to the second argument of urljoin can lead to Open Redirect or SSRF. The urljoin function treats strings starting with '//' as network-path references, which replaces the host of the base URL. Ensure the input is validated (e.g., check that it doesn't start with '//') or sanitized before calling urljoin.
Provally CuratedPublic repositoryMediumMedium confidenceVerifiedApache-2.0
Python
Pythongreprules fetch cve-2024-42353-urljoin-open-redirect --engine opengrepDescription
Passing an unvalidated, non-constant value to the second argument of urljoin can lead to Open Redirect or SSRF. The urljoin function treats strings starting with '//' as network-path references, which replaces the host of the base URL. Ensure the input is validated (e.g., check that it doesn't start with '//') or sanitized before calling urljoin.
Community feedback
0 signals from signed-in users.
- Useful
- 0
- False positive
- 0
- Metadata
- 0