{"id":"CVE-2026-55590","summary":"CakePHP: Open redirect weakness via backslash bypass","details":"CakePHP Authentication is an authentication plugin for CakePHP that can also be used in PSR-7 based applications. Prior to 2.11.1, 3.3.6, and 4.1.1, the getLoginRedirect() method contains a weakness to backslash bypasses that allows redirect targets with attacker-controlled hostnames through the redirect query string parameter. This issue is fixed in versions 2.11.1, 3.3.6, and 4.1.1.","aliases":["GHSA-hhpq-7wg4-36jm"],"modified":"2026-07-16T03:48:42.237272242Z","published":"2026-07-09T18:55:30.241Z","database_specific":{"cwe_ids":["CWE-601"],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/55xxx/CVE-2026-55590.json","cna_assigner":"GitHub_M"},"references":[{"type":"WEB","url":"https://github.com/cakephp/authentication/releases/tag/2.11.1"},{"type":"WEB","url":"https://github.com/cakephp/authentication/releases/tag/3.3.6"},{"type":"WEB","url":"https://github.com/cakephp/authentication/releases/tag/4.1.1"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/55xxx/CVE-2026-55590.json"},{"type":"ADVISORY","url":"https://github.com/cakephp/authentication/security/advisories/GHSA-hhpq-7wg4-36jm"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-55590"},{"type":"FIX","url":"https://github.com/cakephp/authentication/commit/1c1e29c7e8129cfbcae74558316ecd3ea50a8273"},{"type":"FIX","url":"https://github.com/cakephp/authentication/commit/df28ea4e712f1e5bd0e42be4a3c5c750ca50764d"},{"type":"FIX","url":"https://github.com/cakephp/authentication/commit/ee24bd48b9c3ef693dc9965de8f0cc8020a7052c"},{"type":"FIX","url":"https://github.com/cakephp/authentication/pull/795"},{"type":"FIX","url":"https://github.com/cakephp/authentication/pull/796"},{"type":"FIX","url":"https://github.com/cakephp/authentication/pull/799"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/cakephp/authentication","events":[{"introduced":"0"},{"introduced":"45fd308014bf442bc2ab017d027b6865713f9f10"},{"introduced":"8faadabacd15c3e9dc3f5e95c7b32a2bfc153a8a"},{"fixed":"9aec999d89382e34125d5ad2bf5b1518f5167d62"},{"fixed":"86db711cbf34feee27d46a9c5810bb6abd49a4ff"},{"fixed":"ee24bd48b9c3ef693dc9965de8f0cc8020a7052c"},{"fixed":"1c1e29c7e8129cfbcae74558316ecd3ea50a8273"},{"fixed":"df28ea4e712f1e5bd0e42be4a3c5c750ca50764d"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"fixed":"2.11.1"},{"introduced":"3.0.0"},{"fixed":"3.3.6"},{"introduced":"4.0.0"},{"fixed":"4.1.1"}],"source":["AFFECTED_FIELD","REFERENCES"]}},{"type":"GIT","repo":"https://github.com/cakephp/cakephp","events":[{"introduced":"09eb23891dc8134830f4e39e01a3a39f82935e41"},{"fixed":"71a2cf6bf38ef53423e63922669b6f526625a906"},{"introduced":"767b164747df789db8c0fbcf3bcf9eaf3be55b38"},{"fixed":"ec1afe59755717c25492bdb50efcd5f06fe52c0b"}],"database_specific":{"extracted_events":[{"introduced":"3.0.0"},{"fixed":"3.3.6"},{"introduced":"4.0.0"},{"fixed":"4.1.1"}],"source":"CPE_RANGE","cpe":"cpe:2.3:a:cakephp:cakephp:*:*:*:*:*:*:*:*"}}],"versions":["3.3.5","4.1.0","4.0.1","4.0.0","3.3.4","2.11.0","3.3.3","3.3.2","3.3.1","3.3.0","3.2.2","3.2.0","3.2.1","3.1.1","3.1.0","3.0.3","3.0.2","3.0.1","3.0.0","2.10.0","1.1.1","2.9.0","2.8.0","2.7.0","2.6.2","2.6.1","2.6.0","2.5.0","2.4.0","2.3.1","2.3.0","2.2.0","2.1.0","2.0.5","2.0.4","2.0.3","2.0.2","2.0.1","2.0.0","1.4.0","1.3.0","1.2.1","1.2.0","1.1.4","1.1.3","1.1.2","1.1.0","1.0.1","1.0.0-rc9","1.0.0","1.0.0-rc8","1.0.0-rc7","1.0.0-rc6","1.0.0-rc5","1.0.0-rc4","1.0.0-rc3","1.0.0-rc2","1.0.0-rc1","1.0.0-beta4","1.0.0-beta3","1.0.0-beta2","1.0.0-beta1","1.0.0-alpha1","4.0.9","4.0.8","4.0.7","4.0.6","4.0.5","4.0.4","4.0.3","4.0.2","3.3.0-RC1","3.3.0-beta3","3.3.0-beta2","3.3.0-beta","3.1.9","3.1.8","3.1.7","3.1.6","3.1.4","3.1.5","3.1.3","3.1.2","3.0.13","3.0.12","3.0.11","3.0.10","3.0.9","3.0.8","3.0.7","3.0.6","3.0.5","3.0.4"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-55590.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V4","score":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N"}]}