CVE-2026-2153 PUBLISHED

A vulnerability was determined in mwielgoszewski doorman up to 0.6. This issue affects the function is_safe_url of the file doorman/users/views.py. Executing a manipulation of the argument Next can lead to open redirect. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized.

• RacerZ (VulDB User) reporter

• VDB-344855 | mwielgoszewski doorman views.py is_safe_url redirect
• VDB-344855 | CTI Indicators (IOB, IOC, TTP, IOA)
• Submit #748072 | https://github.com/mwielgoszewski/doorman doorman Latest Version (commit 9a9b97c8) Open Redirect
• https://gist.github.com/RacerZ-fighting/39f230feb0e450ae54f0a80c63c5d924

• Open Redirect CWE