Redmine 'redirect_back_or_default()' Function Open Redirection Vulnerability

Redmine is prone to an open-redirection vulnerability because it fails to properly sanitize user-supplied input.

An attacker can leverage this issue by constructing a crafted URI and enticing a user to follow it. When an unsuspecting victim follows the link, they may be redirected to an attacker-controlled site; this may aid in phishing attacks. Other attacks are possible.

Redmine priot to 2.5.1 and 2.4.5 are vulnerable.


Privacy Statement
Copyright 2010, SecurityFocus