[Vulnerability] Cross site scripting (XSS) and Open Redirect on the login page (#396)

2026-03-26 13:03:28 +01:00 · 2023-06-23 14:42:39 +07:00
parent 28f3e820f0
commit 6bbe230fe8
1 changed files with 1 additions and 1 deletions
--- a/templates/login.html
+++ b/templates/login.html
@@ -84,7 +84,7 @@
    function redirectNext() {
        const urlParams = new URLSearchParams(window.location.search);
        const nextURL = urlParams.get('next');
-        if (nextURL) {
+        if (nextURL && /(?:^\/[a-zA-Z_])|(?:^\/$)/.test(nextURL.trim())) {
            window.location.href = nextURL;
        } else {
            window.location.href = '/{{.basePath}}';