CVE-2021-32806 Information
Description
Products.isurlinportal is a replacement for isURLInPortal method in Plone. Versions of Products.isurlinportal prior to 1.2.0 have an Open Redirect vulnerability. Various parts of Plone use the ‘is url in portal’ check for security mostly to see if it is safe to redirect to a url. A url like https://example.org is not in the portal. The url https:example.org without slashes is considered to be in the portal. When redirecting some browsers go to https://example.org others give an error. Attackers may use this to redirect victims to their site especially as part of a phishing attack. The problem has been patched in Products.isurlinportal 1.2.0.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Reference
https://github.com/plone/Products.isurlinportal/commit/d4fd34990d18adf05a10dc5e2bb4b066798280ba
https://github.com/plone/Products.isurlinportal/commit/d4fd34990d18adf05a10dc5e2bb4b066798280ba
https://github.com/plone/Products.isurlinportal/security/advisories/GHSA-q3m9-9fj2-mfwr
https://github.com/plone/Products.isurlinportal/security/advisories/GHSA-q3m9-9fj2-mfwr
http://jvn.jp/en/jp/JVN50804280/index.html
Products.isurlinportal
is
a
replacement
for
isURLInPortal
method
in
Plone.
Versions
of
Products.isurlinportal
prior
to
1.2.0
have
an
Open
Redirect
vulnerability.
Various
parts
of
Plone
use
the
‘is
url
in
portal’
check
for
security
mostly
to
see
if
it
is
safe
to
redirect
to
a
url.
A
url
like
[***https://example.org](https://example.org) is not in the portal. The url https:example.org***](https:example.org)
without
slashes
is
considered
to
be
in
the
portal.
When
redirecting
some
browsers
go
to
[***https://example.org
others
give
an
error.
Attackers
may
use
this
to
redirect
victims
to
their
site
especially
as
part
of
a
phishing
attack.
The
problem
has
been
patched
in
Products.isurlinportal
1.2.0.
cpe:2.3:a:plone:isurlinportal::::::plone::
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
REQUIRED
Confidentiality Impact
CHANGED
Integrity Impact
LOW
Availability Impact
LOW
Base Score
NONE
Base Severity
6.1
Share on: