pgAdmin 4 Open Redirect vulnerability
Moderate severity
GitHub Reviewed
Published
Jan 17, 2023
to the GitHub Advisory Database
•
Updated Feb 2, 2023
Description
Published by the National Vulnerability Database
Jan 17, 2023
Published to the GitHub Advisory Database
Jan 17, 2023
Reviewed
Jan 20, 2023
Last updated
Feb 2, 2023
Open redirect vulnerability in pgAdmin 4 versions prior to v6.14 allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL.
References