Open Redirect in kalcaddle/kodexplorer

Reported on Jun 20th 2021

✍️ Description

Open redirection via SVG file uplaod which redirects users to different site.

🕵️‍♂️ Proof of Concept

Steps to reproduce:
1. download and upload the file
2. View the file.

💥 Impact

This vulnerability is capable of redirect legitimate users to malicious websites.

We have contacted a member of the kalcaddle/kodexplorer team and are waiting to hear back a month ago
25 days ago


same with

warlee validated this vulnerability 25 days ago
x3rz has been awarded the disclosure bounty
The fix bounty is now up for grabs
warlee confirmed that a fix has been merged on 6d2521 25 days ago
warlee has been awarded the fix bounty