Horilla CRM Open Redirect Vulnerability

An open redirect vulnerability exists in Horilla CRM versions prior to 1.0.3. The issue is located in the global search functionality at the '/generics/search/' endpoint. The application improperly validates the 'prev_url' query parameter, allowing attackers to redirect users to arbitrary external sites. This vulnerability can be exploited remotely and requires user interaction.

Impact

Exploitation of this vulnerability allows for open redirect, where users are sent to an external site of the attacker's choice. This could be used for phishing attacks, as users may be deceived into thinking they are interacting with a legitimate Horilla CRM site.

Reproduction

To reproduce this vulnerability, send a request to the '/generics/search/' endpoint with a crafted 'prev_url' parameter that points to an external website. The application will redirect the user to the specified URL, bypassing any security measures.

Remediation

Upgrade to Horilla CRM version 1.0.3, which addresses the open redirect vulnerability. The patched version is available on the Horilla CRM GitHub Releases page.