CVE-2020-36624

ahorner text-helpers translation.rb reverse tabnabbing

CVSS 6.3 MEDIUMEPSS 0.6%CWE-1022

In short

The ahorner text-helpers library allows attackers to create malicious links that can access and control the original webpage through window.opener, a technique called reverse tabnabbing. This happens when the library doesn't properly secure external links opened in new tabs.

Technical detail

A reverse tabnabbing vulnerability exists in lib/text_helpers/translation.rb where unsanitized link arguments allow attackers to craft URLs that, when opened in a new tab/window, retain access to the opener's window object. The attack requires user interaction (clicking a link) but can lead to phishing, data theft, or session hijacking of the original page. Fixed in version 1.1.0.

Summary generated and translated by AI from the official description.

A vulnerability was found in ahorner text-helpers up to 1.0.x. It has been declared as critical. This vulnerability affects unknown code of the file lib/text_helpers/translation.rb. The manipulation of the argument link leads to use of web link to untrusted target with window.opener access. The attack can be initiated remotely. Upgrading to version 1.1.0 is able to address this issue. The name of the patch is 184b60ded0e43c985788582aca2d1e746f9405a3. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-216520.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Affected products

ahorner · text-helpers

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/ahorner/text-helpers/commit/184b60ded0e43c985788582aca2d1e746f9405a3 https://github.com/ahorner/text-helpers/pull/19 https://github.com/ahorner/text-helpers/releases/tag/v1.1.0 https://vuldb.com/?id.216520