3 matches found
CVE-2025-6701
A vulnerability, which was classified as problematic, has been found in Xuxueli xxl-sso 1.1.0. This issue affects some unknown processing of the file /xxl-sso-server/doLogin. The manipulation of the argument redirecturl leads to open redirect. The attack may be initiated remotely. The exploit has...
CVE-2025-6701 Xuxueli xxl-sso doLogin redirect
A vulnerability, which was classified as problematic, has been found in Xuxueli xxl-sso 1.1.0. This issue affects some unknown processing of the file /xxl-sso-server/doLogin. The manipulation of the argument redirecturl leads to open redirect. The attack may be initiated remotely. The exploit has...
CVE-2025-6701
CVE-2025-6701 affects Xuxueli xxl-sso 1.1.0. The vulnerability is an open redirect caused by manipulating the redirect_url parameter in /xxl-sso-server/doLogin, with remote attack potential. Public disclosures and PoCs exist; exploitation status varies by source. Remediation: upgrade to com.xuxue...