CVE-2025-48936 | Zitadel up to 2.70.11/2.71.10/3.2.1 Forwarded/X-Forwarded-Host redirect

Inserito da Angelo Barbosa | Mag 30, 2025 | CVE

A vulnerability was found in Zitadel up to 2.70.11/2.71.10/3.2.1. It has been classified as problematic. This affects an unknown part. The manipulation of the argument Forwarded/X-Forwarded-Host leads to open redirect.

This vulnerability is uniquely identified as CVE-2025-48936. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-48936 | Zitadel up to 2.70.11/2.71.10/3.2.1 Forwarded/X-Forwarded-Host redirect

Post correlati

CVE-2024-5613 | Formula Plugin up to 0.5.1 on WordPress quality_customizer_notify_dismiss_action cross site scripting

CVE-2024-22490 | beetl-bbs 2.0 /index keyword cross site scripting

CVE-2024-49326 | Vasilis Kerasiotis Affiliator Plugin up to 2.1.3 on WordPress unrestricted upload

CVE-2024-48206 | chainer 7.8.1.post1 deserialization