CVE-2026-27982 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An open redirect vulnerability exists in django-allauth versions prior to 65.14.1 when SAML IdP initiated SSO is enabled (it is disabled by default), which may…
Medium CVSS: 5.1

CVE-2026-27982

An open redirect vulnerability exists in django-allauth versions prior to 65.14.1 when SAML IdP initiated SSO is enabled (it is disabled by default), which may allow an attacker to redirect users to an arbitrary external website via a crafted URL.
Vendor
Allauth
Product
Allauth
CWE
CWE-601
Yayın Tarihi
2026-03-05 06:16:30
Güncelleme
2026-03-09 18:41:21
Source Identifier
vultures@jpcert.or.jp
KEV Date Added
-

Kategoriler

CWE-601 Allauth MEDIUM Allauth 2026

Referanslar

https://allauth.org/news/2026/02/django-allauth-65.14.1-released/ https://jvn.jp/en/jp/JVN23669411/