DiracX-Web Open Redirect Vulnerability in Login Component
Vulnerability
An open redirect vulnerability has been identified in DiracX-Web versions prior to 0.1.0-a8. This issue allows an attacker to manipulate a redirect field on the login page, directing authenticated users to arbitrary websites. The vulnerability arises because the redirect URI is not properly validated, enabling phishing attacks by, for example, redirecting users to a fake login page to harvest credentials.
Impact
Exploitation of this vulnerability could facilitate phishing attacks, allowing attackers to impersonate the DiracX service and capture user credentials.
Reproduction
To reproduce this vulnerability, send a request to the DiracX-Web login page with a crafted redirect parameter. This parameter can be polluted to obscure the true destination URL, making it appear as though the user is being redirected to a legitimate site when, in fact, they are being sent to a malicious one.
Remediation
Users should update to DiracX-Web version 0.1.0-a8 or later, where this vulnerability has been fixed.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.