CVE-2026-28512— Pocket ID 输入验证错误漏洞

Pocket ID: OAuth redirect_uri validation bypass via userinfo/host confusion

Pocket ID is an OIDC provider that allows users to authenticate with their passkeys to your services. From 2.0.0 to before 2.4.0, a flaw in callback URL validation allowed crafted redirect_uri values containing URL userinfo (@) to bypass legitimate callback pattern checks. If an attacker can trick a user into opening a malicious authorization link, the authorization code may be redirected to an attacker-controlled host. This vulnerability is fixed in 2.4.0.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N

指向未可信站点的URL重定向(开放重定向)

Pocket ID 输入验证错误漏洞

Pocket ID是Pocket ID开源的一个支持无密码认证的OIDC身份提供商。 Pocket ID 2.0.0版本至2.4.0之前版本存在输入验证错误漏洞，该漏洞源于回调URL验证存在缺陷，可能导致授权代码重定向至攻击者控制的主机。

N/A

N/A