CVE-2026-34847
published 2026-04-02CVE-2026-34847: hoppscotch is an open source API development ecosystem. Prior to version 2026.3.0, the /enter page contains a DOM-based open redirect vulnerability. The…
PriorityP338medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
0.40%
32.0th percentile
hoppscotch is an open source API development ecosystem. Prior to version 2026.3.0, the /enter page contains a DOM-based open redirect vulnerability. The redirect query parameter is directly used to construct a URL and redirect the user without proper validation. This issue has been patched in version 2026.3.0.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hoppscotch | hoppscotch | < 2026.3.0 | 2026.3.0 |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No advisories linked to this vulnerability.
No detection rules found.
Nuclei
Hoppscotch <= 2026.2.1 - Open Redirect
nuclei·CVSS 4.7
CVE-2026-34847 [MEDIUM] Hoppscotch <= 2026.2.1 - Open Redirect
Hoppscotch <= 2026.2.1 - Open Redirect
Hoppscotch <= 2026.2.1 is vulnerable to a DOM-based open redirect on the /enter page. The redirect query parameter is passed directly to windowz location.href with no origin validation. Requires one additional query parameter to trigger. Exploited via a crafted URL such as /enter?redirect=evil.com&foo=bar.
Template:
id: CVE-2026-34847
info:
name: Hoppscotch <= 2026.2.1 - Open Redirect
author: ritikchaddha
severity: medium
description: |
Hoppscotch <= 2026.2.1 is vulnerable to a DOM-based open redirect on the /enter page. The redirect query parameter is passed directly to windowz location.href with no origin validation. Requires one additional query parameter to trigger. Exploited via a crafted URL such as /enter?redirect=evil.com&foo=bar.
impact:
Nuclei
Appsmith <= v1.97 - Information Disclosure
nuclei·CVSS 4.7
CVE-2026-34847 [MEDIUM] Appsmith <= v1.97 - Information Disclosure
Appsmith <= v1.97 - Information Disclosure
Appsmith <= v1.97 instance management API endpoints are accessible without authentication, allowing an attacker to obtain sensitive information such as license plan, instance ID, authentication providers, feature flags, and configuration metadata via unauthenticated requests to specific API endpoints.
Template:
id: appsmith-info-disclosure
info:
name: Appsmith <= v1.97 - Information Disclosure
author: ritikchaddha
severity: medium
description: |
Appsmith <= v1.97 instance management API endpoints are accessible without authentication, allowing an attacker to obtain sensitive information such as license plan, instance ID, authentication providers, feature flags, and configuration metadata via unauthenticated requests to specific API endpoints.
No writeups or analysis indexed.
2026-04-02
Published