Impact
The cookie consent page in Open Forms contains an open redirect by injecting a referer querystring parameter and failing to validate the value. A malicious actor is able to redirect users to a website under their control, opening them up for phishing attacks. The redirect is initiated by the open forms backend which is a legimate page, making it less obvious to end users they are being redirected to a malicious website.
Patches
Patches will be provided in the master branch and the upcoming releases for supported versions: 1.0.9 and 1.1.1.
Workarounds
There is no workaround available.
For more information
If you have any questions or comments about this advisory:
Impact
The cookie consent page in Open Forms contains an open redirect by injecting a
refererquerystring parameter and failing to validate the value. A malicious actor is able to redirect users to a website under their control, opening them up for phishing attacks. The redirect is initiated by the open forms backend which is a legimate page, making it less obvious to end users they are being redirected to a malicious website.Patches
Patches will be provided in the
masterbranch and the upcoming releases for supported versions:1.0.9and1.1.1.Workarounds
There is no workaround available.
For more information
If you have any questions or comments about this advisory: