CVE-2017-7266
Netflix Security Monkey before version 0.8.0 is affected by an Open Redirect vulnerability. The logout flow accepts the next parameter, which can redirect users to arbitrary domains regardless of the Host header. Technical details across sources consistently describe this as an open redirect in t...