← back
CVE-2022-0869

Multiple Open Redirect in nitely/spirit

CVSS 4.3 MEDIUMEPSS 2.6%CWE-601
Vexday Risk Score
28Low
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS 4.3EPSS 2.6%KEV nãoPoC Nuclei simMetasploit Patch
Lifecycle
06 Mar 2022Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
Multiple Open Redirect in GitHub repository nitely/spirit prior to 0.12.3.
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Affected products
nitely · nitely/spirit

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/nitely/spirit/commit/8f32f89654d6c30d56e0dd167059d32146fb32efhttps://huntr.dev/bounties/ed335a88-f68c-4e4d-ac85-f29a51b03342