VYPR
Medium severity4.7NVD Advisory· Published Apr 2, 2026· Updated Apr 15, 2026

CVE-2026-34847

CVE-2026-34847

Description

hoppscotch is an open source API development ecosystem. Prior to version 2026.3.0, the /enter page contains a DOM-based open redirect vulnerability. The redirect query parameter is directly used to construct a URL and redirect the user without proper validation. This issue has been patched in version 2026.3.0.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:hoppscotch:hoppscotch:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:hoppscotch:hoppscotch:*:*:*:*:*:*:*:*range: <2026.3.0
    • (no CPE)range: <2026.3.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.