Enviar #623477: zlt2000 https://github.com/zlt2000/microservices-platform <=6.0.0 Open Redirectinformación

Títulozlt2000 https://github.com/zlt2000/microservices-platform <=6.0.0 Open Redirect
DescripciónIn the latest version 6.0.0, the OAuth logout functionality performs a URL redirect action when clearing tokens. However, this parameter is user-controllable and lacks security validation, allowing attackers to exploit this vulnerability to launch phishing and other attacks against users.
Fuente⚠️ https://github.com/zlt2000/microservices-platform/issues/78
Usuario
 ZAST.AI (UID 87884)
Sumisión2025-07-26 18:22 (hace 9 meses)
Moderación2025-08-08 10:23 (13 days later)
EstadoAceptado
Entrada de VulDB319233 [zlt2000 microservices-platform hasta 6.0.0 OauthLogoutSuccessHandler.java onLogoutSuccess redirect_url Redirect]
Puntos18

AnteriorVisión De ConjuntoPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!