Open Redirect in forkcms/forkcms


Reported on

Oct 17th 2021


When a user, who has access to admin page and who is not logged in, opens a page like and the user enters their credentials, the user is redirected to

When a user, who has access to admin page and who is already logged in, opens the same page, the user will be automatically redirected to

There are different payloads which can be used here (listed below in the Proof of Concept part).

Proof of Concept

Open a page like this (replace with you own address).


This way, an attacker could redirect the user to any page the attacker conrols.

We have contacted a member of the forkcms team and are waiting to hear back 7 months ago
Jelmer Prins validated this vulnerability 7 months ago
starkitsec has been awarded the disclosure bounty
The fix bounty is now up for grabs
Jelmer Prins
2 months ago


fix is currently in review

Jelmer Prins confirmed that a fix has been merged on 77760a 2 months ago
Jelmer Prins has been awarded the fix bounty
to join this conversation