CNNVD-202602-1212 Information

CNNVD ID

CNNVD-202602-1212

Related CVE

CVE-2026-2153

• CNNVD Published: 2026-02-08

Description (Chinese)

doorman是Marcin Wielgoszewski个人开发者的一个配置管理器。 doorman 0.6及之前版本存在输入验证错误漏洞，该漏洞源于对文件doorman/users/views.py中参数Next的错误操作，可能导致开放重定向。

Description (English)

Doorman is a configuration manager for Marcin Wielgoszewski’s personal developer. There is an input authentication error gap in the doorman 0.6 and previous versions, which stems from an error in the use of the parameter Next in the document doorman/user/views.py, which may lead to open redirection.

Hazard Level

High

Vulnerability Type

输入验证错误

Affected Vendor

个人开发者

Published

2026-02-08

Last Modified

2026-02-24

References

https://vuldb.com/?id.344855 https://gist.github.com/RacerZ-fighting/39f230feb0e450ae54f0a80c63c5d924 https://vuldb.com/?submit.748072 https://vuldb.com/?ctiid.344855 https://access.redhat.com/security/cve/cve-2026-2153