by @mweinelt Activity log
- Created automatic suggestion
- @mweinelt accepted
- @mweinelt published on GitHub
An open redirect vulnerability exists in django-allauth versions prior to …
An open redirect vulnerability exists in django-allauth versions prior to 65.14.1 when SAML IdP initiated SSO is enabled (it is disabled by default), which may allow an attacker to redirect users to an arbitrary external website via a crafted URL.
References
Affected products
django-allauth
- ==prior to 65.14.1
Matching in nixpkgs
pkgs.python312Packages.django-allauth
Integrated set of Django applications addressing authentication, registration, account management as well as 3rd party (social) account authentication
pkgs.python313Packages.django-allauth
Integrated set of Django applications addressing authentication, registration, account management as well as 3rd party (social) account authentication
pkgs.python314Packages.django-allauth
Integrated set of Django applications addressing authentication, registration, account management as well as 3rd party (social) account authentication
Package maintainers
-
@DerDennisOP Dennis <dennish@wuitz.de>