CVE-2026-53523
Nezha Monitoring: OAuth2 Redirect URL โ Host Header Injection
CVSS Score
6.8
EPSS Score
0.0%
EPSS Percentile
0th
Nezha Monitoring is a self-hostable, lightweight, servers and websites monitoring and O&M tool. From version 1.0.0 to before version 2.2.0, the getRedirectURL function in oauth2.go:22-29 constructs the OAuth2 callback URL by concatenating the request's Host header with a fixed path, with zero validation of the Host header. This can result in host header injection. This issue has been patched in version 2.2.0.
| CWE | CWE-601 |
| Vendor | nezhahq |
| Product | nezha |
| Published | Jun 12, 2026 |
Stay Ahead of the Next One
Get instant alerts for nezhahq nezha
Be the first to know when new medium vulnerabilities affecting nezhahq nezha are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None
Affected Versions
nezhahq / nezha
>= 1.0.0, < 2.2.0