Description
An open redirect vulnerability exists in Okta OIDC Middleware prior to version 5.0.0 allowing an attacker to redirect a user to an arbitrary URL.
Remediation
References
https://github.com/okta/okta-oidc-middleware/security/advisories/GHSA-58h4-9m7m-j9m4
Related Vulnerabilities
CVE-2022-39230 Vulnerability in npm package fhir-works-on-aws-authz-smart
CVE-2017-16214 Vulnerability in npm package peiserver
CVE-2020-19698 Vulnerability in maven package org.webjars.bower:editor.md
CVE-2021-43142 Vulnerability in maven package com.wutka:jox
CVE-2021-33611 Vulnerability in maven package org.webjars.bowergithub.vaadin:vaadin-menu-bar