Lucene search
+L

6 matches found

nvd
nvd
added 2025/08/08 8:15 p.m.8 views

CVE-2025-8737

A vulnerability, which was classified as problematic, was found in zlt2000 microservices-platform up to 6.0.0. This affects the function onLogoutSuccess of the file src/main/java/com/central/oauth/handler/OauthLogoutSuccessHandler.java. The manipulation of the argument redirecturl leads to open...

5.1CVSS0.00232EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2025/08/08 7:32 p.m.6 views

CVE-2025-8737 zlt2000 microservices-platform OauthLogoutSuccessHandler.java onLogoutSuccess redirect

A vulnerability, which was classified as problematic, was found in zlt2000 microservices-platform up to 6.0.0. This affects the function onLogoutSuccess of the file src/main/java/com/central/oauth/handler/OauthLogoutSuccessHandler.java. The manipulation of the argument redirecturl leads to open...

5.1CVSS7.1AI score0.00232EPSS
Exploits0References5
cve
cve
added 2025/08/08 7:32 p.m.19 views

CVE-2025-8737

The CVE-2025-8737 entry concerns zlt2000 microservices-platform (up to 6.0.0). A vulnerability exists in the onLogoutSuccess function (OauthLogoutSuccessHandler.java) where manipulating the redirect_url argument causes an open redirect. Exploitation can be performed remotely, and public disclosur...

5.1CVSS7.1AI score0.00232EPSS
Exploits0References5
osv
osv
added 2025/08/08 7:32 p.m.5 views

CVE-2025-8737 zlt2000 microservices-platform OauthLogoutSuccessHandler.java onLogoutSuccess redirect

A vulnerability, which was classified as problematic, was found in zlt2000 microservices-platform up to 6.0.0. This affects the function onLogoutSuccess of the file src/main/java/com/central/oauth/handler/OauthLogoutSuccessHandler.java. The manipulation of the argument redirecturl leads to open...

5.1CVSS5.2AI score0.00232EPSS
Exploits0References7
ptsecurity
ptsecurity
added 2025/08/08 12:0 a.m.11 views

PT-2025-32408 · Unknown · Zlt2000 Microservices-Platform

Name of the Vulnerable Software and Affected Versions: zlt2000 microservices-platform versions through 6.0.0 Description: A problematic issue exists in zlt2000 microservices-platform. The issue is related to an open redirect vulnerability within the onLogoutSuccess function located in the file...

5.1CVSS6.8AI score0.00232EPSS
Exploits0References9
github
github
added 2025/06/17 2:20 p.m.8 views

ash_authentication_phoenix has Insufficient Session Expiration

Impact Session tokens remain valid on the server after user logout, creating a security gap where: - Compromised tokens via XSS, network interception, or device theft continue to work even after the user logs out - The sessions stored in the database still expire, limiting the duration during whi...

2.3CVSS6.6AI score0.00402EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder