cve/2022/CVE-2022-35953.md

### [CVE-2022-35953](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35953)
![](https://img.shields.io/static/v1?label=Product&message=bookwyrm&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-601%3A%20URL%20Redirection%20to%20Untrusted%20Site%20('Open%20Redirect')&color=brighgreen)

### Description

BookWyrm is a social network for tracking your reading, talking about books, writing reviews, and discovering what to read next. Some links in BookWyrm may be vulnerable to tabnabbing, a form of phishing that gives attackers an opportunity to redirect a user to a malicious site. The issue was patched in version 0.4.5.

### POC

#### Reference
- https://huntr.dev/bounties/67ca22bd-19c6-466b-955a-b1ee2da0c575/

#### Github
No PoCs found on GitHub currently.