CVE-2020-28724

CVE-2020-28724

EPSS 1.7%

Open redirect vulnerability in werkzeug before 0.11.6 via a double slash in the URL.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/pallets/flask/issues/1639 https://github.com/pallets/werkzeug/issues/822 https://github.com/pallets/werkzeug/pull/890/files