CVE-2024-53264

MEDIUM

bunkerweb < 1.5.11 - Open Redirect via Loading Endpoint Next Parameter

Title source: llm

Description

bunkerweb is an Open-source and next-generation Web Application Firewall (WAF). A open redirect vulnerability exists in the loading endpoint, allowing attackers to redirect authenticated users to arbitrary external URLs via the "next" parameter. The loading endpoint accepts and uses an unvalidated "next" parameter for redirects. Ex. visiting: `/loading?next=https://google.com` while authenticated will cause the page will redirect to google.com. This vulnerability could be used in phishing attacks by redirecting users from a legitimate application URL to malicious sites. This issue has been addressed in version 1.5.11. Users are advised to upgrade. There are no known workarounds for this vulnerability.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

https://github.com/bunkerity/bunkerweb/security/advisories/GHSA-q9rr-h3hx-m87g

Scores

CVSS v4 5.1

EPSS 0.0075

EPSS Percentile 49.8%

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-601

Status published

Products (2)

bunkerity/bunkerweb 0 - 1.5.11Go

bunkerity/bunkerweb < 1.5.11

Published Nov 27, 2024

Tracked Since Feb 18, 2026