VYPR

Security Monkey

by Netflix

Source repositories

CVEs (1)

  • CVE-2017-7266MedMar 26, 2017
    risk 0.33cvss 6.1epss 0.01

    Netflix Security Monkey before 0.8.0 has an Open Redirect. The logout functionality accepted the "next" parameter which then redirects to any domain irrespective of the Host header.