CVE-2026-55590
Severity CVSS v4.0:
MEDIUM
Type:
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')
Publication date:
09/07/2026
Last modified:
09/07/2026
Description
CakePHP Authentication is an authentication plugin for CakePHP that can also be used in PSR-7 based applications. Prior to 2.11.1, 3.3.6, and 4.1.1, the getLoginRedirect() method contains a weakness to backslash bypasses that allows redirect targets with attacker-controlled hostnames through the redirect query string parameter. This issue is fixed in versions 2.11.1, 3.3.6, and 4.1.1.
Impact
Base Score 4.0
5.10
Severity 4.0
MEDIUM
References to Advisories, Solutions, and Tools
- https://github.com/cakephp/authentication/commit/1c1e29c7e8129cfbcae74558316ecd3ea50a8273
- https://github.com/cakephp/authentication/commit/df28ea4e712f1e5bd0e42be4a3c5c750ca50764d
- https://github.com/cakephp/authentication/commit/ee24bd48b9c3ef693dc9965de8f0cc8020a7052c
- https://github.com/cakephp/authentication/pull/795
- https://github.com/cakephp/authentication/pull/796
- https://github.com/cakephp/authentication/pull/799
- https://github.com/cakephp/authentication/releases/tag/2.11.1
- https://github.com/cakephp/authentication/releases/tag/3.3.6
- https://github.com/cakephp/authentication/releases/tag/4.1.1
- https://github.com/cakephp/authentication/security/advisories/GHSA-hhpq-7wg4-36jm



