CVE-2021-3851: Open Redirect in firefly-iii
5
CVSS Score
3.0
Basic Information
CVE ID
GHSA ID
EPSS Score
0.38902%
CWE
Published
10/21/2021
Updated
2/1/2023
KEV Status
No
Technology
PHP
Technical Details
CVSS Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
---|---|---|---|
grumpydictator/firefly-iii | composer | < 5.6.2 | 5.6.2 |
Vulnerability Intelligence
Miggo AI
Root Cause Analysis
The commit adds host validation checks in Handler.php
's invalid()
method and UserNavigation.php
's rememberPreviousUri
. The invalid()
method's pre-patch version lacked validation for the 'redirectTo' parameter, making it the primary open redirect vector. The UserNavigation.php
change fixes a secondary path where stored URLs could have external hosts. The Handler.php
fix directly correlates with CWE-601 mitigation patterns for open redirects.