CVE-2020-36663: 
PHP vulnerability analysis and mitigation

A vulnerability classified as problematic was discovered in Artesãos SEOTools versions up to 0.17.1. The vulnerability affects the makeTag function in the OpenGraph.php file, where manipulation of the argument value leads to an open redirect vulnerability. The issue was disclosed on March 4, 2023 and has been assigned CVE-2020-36663. The vulnerability was fixed in version 0.17.2 (NVD).

The vulnerability exists in the makeTag function of OpenGraph.php where insufficient validation of argument values could allow for open redirect attacks. The issue has been assigned a CVSS v3.1 base score of 6.1 (MEDIUM) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N. The vulnerability was addressed through improved input validation by removing potentially dangerous URL components (GitHub Patch).

The vulnerability could allow attackers to perform open redirect attacks, potentially leading users to malicious websites. This could enable phishing attacks or other malicious activities by exploiting user trust in the original domain (NVD).

The recommended mitigation is to upgrade to Artesãos SEOTools version 0.17.2 or later, which contains the security patch ca27cd0edf917e0bc805227013859b8b5a1f01fb that addresses this vulnerability (GitHub Release).