← back
CVE-2022-0692

Open Redirect on Rudloff/alltube in rudloff/alltube

CVSS 4.7 MEDIUMEPSS 3.4%CWE-601
Vexday Risk Score
28Low
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS 4.7EPSS 3.4%KEV nãoPoC Nuclei simMetasploit Patch
Lifecycle
21 Feb 2022Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
Open Redirect on Rudloff/alltube in Packagist rudloff/alltube prior to 3.0.1.
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N
Affected products
rudloff · rudloff/alltube

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/rudloff/alltube/commit/bc14b6e45c766c05757fb607ef8d444cbbfba71ahttps://huntr.dev/bounties/4fb39400-e08b-47af-8c1f-5093c9a51203