GHSA-grh9-37g7-53mj: WireGuard Portal v2 has Open Redirect Vulnerability in OAuth Authentication Flow

February 2, 2026

An Open Redirect vulnerability exists in the OAuth authentication flow that allows attackers to redirect users to external malicious websites after authentication. The vulnerability is caused by insufficient validation of the return parameter in the OAuth login initialization endpoint.

References

github.com/advisories/GHSA-grh9-37g7-53mj
github.com/h44z/wg-portal
github.com/h44z/wg-portal/commit/e62db0d62ebabbec39c767b953b92fb4b4d08a81
github.com/h44z/wg-portal/releases/tag/v2.1.2
github.com/h44z/wg-portal/security/advisories/GHSA-grh9-37g7-53mj

Code Behaviors & Features

Detect and mitigate GHSA-grh9-37g7-53mj with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →