CVE-2023-22298
published 2023-01-17CVE-2023-22298: Open redirect vulnerability in pgAdmin 4 versions prior to v6.14 allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and…
PriorityP428medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EPSS
0.91%
55.5th percentile
Open redirect vulnerability in pgAdmin 4 versions prior to v6.14 allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fedoraproject | fedora | — | — |
| pgadmin | pgadmin_4 | >= 4.0 < 6.14 | 6.14 |
| pgadmin_project | pgadmin_4 | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
pgAdmin 4 Open Redirect vulnerability
ghsa·2023-01-17
CVE-2023-22298 [MEDIUM] CWE-601 pgAdmin 4 Open Redirect vulnerability
pgAdmin 4 Open Redirect vulnerability
Open redirect vulnerability in pgAdmin 4 versions prior to v6.14 allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL.
OSV
pgAdmin 4 Open Redirect vulnerability
osv·2023-01-17
CVE-2023-22298 [MEDIUM] pgAdmin 4 Open Redirect vulnerability
pgAdmin 4 Open Redirect vulnerability
Open redirect vulnerability in pgAdmin 4 versions prior to v6.14 allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/pgadmin-org/pgadmin4https://github.com/pgadmin-org/pgadmin4/issues/5343https://jvn.jp/en/jp/JVN03832974/index.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHY2B25YHIIFQ3G44TR7NNEST7FJGJPH/https://www.pgadmin.org/https://github.com/pgadmin-org/pgadmin4https://github.com/pgadmin-org/pgadmin4/issues/5343https://jvn.jp/en/jp/JVN03832974/index.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHY2B25YHIIFQ3G44TR7NNEST7FJGJPH/https://www.pgadmin.org/
2023-01-17
Published