Moderate severityNVD Advisory· Published Jul 16, 2021· Updated Aug 3, 2024
Open Redirect in medialize/URI.js
CVE-2021-3647
Description
URI.js is vulnerable to URL Redirection to Untrusted Site
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
urijsnpm | < 1.19.7 | 1.19.7 |
Affected products
2- medialize/medialize/URI.jsv5Range: unspecified
Patches
Vulnerability mechanics
References
10- github.com/advisories/GHSA-89gv-h8wf-cg8rghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-3647ghsaADVISORY
- github.com/medialize/URI.js/commit/ac43ca8f80c042f0256fb551ea5203863dec4481ghsax_refsource_MISCWEB
- github.com/medialize/URI.js/pull/233ghsaWEB
- github.com/medialize/URI.js/releases/tag/v1.19.3ghsaWEB
- github.com/medialize/URI.js/releases/tag/v1.19.4ghsaWEB
- github.com/medialize/URI.js/releases/tag/v1.19.6ghsaWEB
- github.com/medialize/URI.js/releases/tag/v1.19.7ghsaWEB
- github.com/medialize/URI.js/security/advisories/GHSA-89gv-h8wf-cg8rghsaWEB
- huntr.dev/bounties/1625558772840-medialize/URI.jsghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.