Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Redirect URL matching ignores character casing
Vulnerability Description
ORY Fosite is a security first OAuth2 & OpenID Connect framework for Go. In Fosite before version 0.34.1, the OAuth 2.0 Client's registered redirect URLs and the redirect URL provided at the OAuth2 Authorization Endpoint where compared using strings.ToLower while they should have been compared with a simple string match. This allows an attacker to register a client with allowed redirect URL https://example.com/callback. Then perform an OAuth2 flow and requesting redirect URL https://example.com/CALLBACK. Instead of an error (invalid redirect URL), the browser is redirected to https://example.com/CALLBACK with a potentially successful OAuth2 response, depending on the state of the overall OAuth2 flow (the user might still deny the request for example). This vulnerability has been patched in ORY Fosite v0.34.1.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N
Vulnerability Type
输入验证不恰当
Vulnerability Title
ory ORY Fosite 输入验证错误漏洞
Vulnerability Description
ory ORY Fosite是ory公司的一款GO语言编写的OAUTH、OPENID连接框架。 ORY Fosite 0.34.1版本之前版本,0.30.2版本及之前版本存在安全漏洞,该漏洞源于在注册URL重定向和重定向URL提供了相比在OAuth2授权端点使用字符串。低时应该与一个简单的字符串匹配。攻击者可利用该漏洞注册客户端允许重定向URL https://example.com/callback。然后执行OAuth2流和请求重定向URL https://example.com/CALLBACK。而不
CVSS Information
N/A
Vulnerability Type
N/A