CVE-2026-34847

Publication date

2026-04-02 19:19:05

Family

GitHub_M

State

PUBLISHED

Description

hoppscotch is an open source API development ecosystem. Prior to version 2026.3.0, the /enter page contains a DOM-based open redirect vulnerability. The redirect query parameter is directly used to construct a URL and redirect the user without proper validation. This issue has been patched in version 2026.3.0.