CVE-2024-12760 Information

Description

An open redirect vulnerability in bentoml/bentoml v1.3.9 allows a remote unauthenticated attacker to redirect users to arbitrary websites via a specially crafted URL. This can be exploited for phishing attacks malware distribution and credential theft.

Reference

https://huntr.com/bounties/2a284ff6-cc6c-4a10-b72e-1bb31c842bca