CVE-2025-8737 | zlt2000 microservices-platform up to 6.0.0 OauthLogoutSuccessHandler.java onLogoutSuccess redirect_url (Issue 78)

Inserito da Angelo Barbosa | Ago 8, 2025 | CVE

A vulnerability, which was classified as problematic, was found in zlt2000 microservices-platform up to 6.0.0. This affects the function onLogoutSuccess of the file src/main/java/com/central/oauth/handler/OauthLogoutSuccessHandler.java. The manipulation of the argument redirect_url leads to open redirect.

This vulnerability is uniquely identified as CVE-2025-8737. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-8737 | zlt2000 microservices-platform up to 6.0.0 OauthLogoutSuccessHandler.java onLogoutSuccess redirect_url (Issue 78)

Post correlati

CVE-2024-30620 | Tenda AX1803 1.0.0.1 /goform/AdvSetMacMtuWan fromAdvSetMacMtuWan serviceName stack-based overflow

CVE-2024-39223 | gost 2.11.5 SSH Service HostKeyCallback improper authentication (Issue 1034)

CVE-2024-1622 | NLnet Labs Routinator RTR Connection incorrect check of function return value

CVE-2024-3994 | Tutor LMS Plugin up to 2.6.2 on WordPress Shortcode tutor_instructor_list cross site scripting