Open Redirect in forkcms/forkcms


Reported on

Oct 17th 2021


When a user, who has access to admin page and who is not logged in, opens a page like and the user enters their credentials, the user is redirected to

When a user, who has access to admin page and who is already logged in, opens the same page, the user will be automatically redirected to

There are different payloads which can be used here (listed below in the Proof of Concept part).

Proof of Concept

Open a page like this (replace with you own address).


This way, an attacker could redirect the user to any page the attacker conrols.

We have contacted a member of the forkcms team and are waiting to hear back 2 years ago
Jelmer Prins validated this vulnerability 2 years ago
kstarkloff has been awarded the disclosure bounty
The fix bounty is now up for grabs
Jelmer Prins
2 years ago


fix is currently in review

Jelmer Prins marked this as fixed in 5.11.1 with commit 77760a 2 years ago
Jelmer Prins has been awarded the fix bounty
This vulnerability will not receive a CVE
to join this conversation