Weblate Open Redirect Vulnerability in Anubis Integration

A open redirect vulnerability has been identified in Weblate versions through 5.13.2. The issue arises when Weblate is configured to work with Anubis, and the REDIRECT_DOMAINS setting is not enabled. Under these conditions, an attacker can create a URL on a legitimate Weblate domain that redirects users to a malicious site. This vulnerability can also be exploited to initiate drive-by downloads of harmful files, posing an increased risk to users.

Impact

Exploitation of this vulnerability allows for open redirection to attacker-controlled sites, which can be used for phishing attacks or to deliver malware through drive-by downloads.

Reproduction

To reproduce this vulnerability, configure Weblate with Anubis integration and ensure that the REDIRECT_DOMAINS setting is not enabled. Then, create a URL that includes the redir parameter, pointing to an external site. When the link is clicked, the user will be redirected to the specified site, demonstrating the open redirect vulnerability.

Remediation

Users can update to Weblate version 5.13.3.3, which addresses this vulnerability by including the REDIRECT_DOMAINS configuration option. Instructions for updating can be found in the Weblate documentation.