CVE-2024-10812

MEDIUM NUCLEI

Binary-husky Gpt Academic - Open Redirect

Title source: rule

Description

An open redirect vulnerability exists in binary-husky/gpt_academic version 3.83. The vulnerability occurs when a user is redirected to a URL specified by user-controlled input in the 'file' parameter without proper validation or sanitization. This can be exploited by attackers to conduct phishing attacks, distribute malware, and steal user credentials.

Nuclei Templates (1)

GPT Academic v1.3.9 - Open Redirect

MEDIUMVERIFIEDby DhiyaneshDK

FOFA: body="gpt_academic"

References (1)

[Exploit, Third Party Advisory] https://huntr.com/bounties/51408ebd-e0be-489d-8088-f210087dbd6a

Scores

CVSS v3 6.1

EPSS 0.0090

EPSS Percentile 75.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-601

Status published

Products (1)

binary-husky/gpt_academic 3.83

Published Mar 20, 2025

Tracked Since Feb 18, 2026