Primary

Context

django-allauth Open Redirect Vulnerability in SAML IdP Initiated SSO

Vulnerability

A open redirect vulnerability has been identified in django-allauth versions prior to 65.14.1, specifically when SAML IdP initiated SSO is enabled. This vulnerability allows an attacker to redirect users to an arbitrary external website via a crafted URL.

Impact

Exploitation of this vulnerability could lead to an open redirect, allowing users to be sent to malicious external sites.

Remediation

Users are advised to update django-allauth to version 65.14.1 or later.

Added: Mar 5, 2026, 7:06 AM

Updated: Mar 5, 2026, 7:06 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.2

exploitability

6.2

remediation

0.0

relevance

3.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.2

exploitability

6.2

remediation

0.0

relevance

3.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

django-allauth Open Redirect Vulnerability in SAML IdP Initiated SSO

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating