VYPR

PyPI package

security_monkey

pkg:pypi/security_monkey

Vulnerabilities (1)

  • CVE-2017-7266MedMar 26, 2017
    affected < 0.8.0fixed 0.8.0

    Netflix Security Monkey before 0.8.0 has an Open Redirect. The logout functionality accepted the "next" parameter which then redirects to any domain irrespective of the Host header.