Primary

Context

Byaidu PDFMathTranslate Open Redirect Vulnerability

Vulnerability

A vulnerability allowing open redirects has been identified in Byaidu PDFMathTranslate version 1.9.9. This issue arises in the application’s /gradio_api endpoint, where the file parameter is not properly validated. As a result, attackers can craft URLs that redirect users to arbitrary external websites. This vulnerability could be exploited for phishing attacks or to bypass security filters.

Impact

Exploitation of this vulnerability could lead to open redirect behavior, allowing for phishing attacks or evasion of security measures.

Reproduction

To reproduce this vulnerability, send a request to the /gradio_api endpoint with a crafted URL in the file parameter. The application will respond with an HTTP 302 redirect to the specified URL, demonstrating the open redirect behavior.

Added: Oct 30, 2025, 2:18 PM

Updated: Oct 30, 2025, 3:05 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.7

remediation

0.0

relevance

0.8

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.7

remediation

0.0

relevance

0.8

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Byaidu PDFMathTranslate Open Redirect Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating