4 matches found
CVE-2025-60935
An open redirect vulnerability in the login endpoint of Blitz Panel v1.17.0 allows attackers to redirect users to malicious domains via a crafted URL. This issue affects the nexturl parameter in the login endpoint and could lead to phishing or token theft after successful authentication...
CVE-2025-60935
An open redirect vulnerability in the login endpoint of Blitz Panel v1.17.0 allows attackers to redirect users to malicious domains via a crafted URL. This issue affects the nexturl parameter in the login endpoint and could lead to phishing or token theft after successful authentication...
CVE-2025-60935
CVE-2025-60935 describes an open redirect in Blitz Panel v1.17.0 at the login endpoint, affecting the next_url parameter. The vulnerability can enable a user to be redirected to a malicious domain after login, with potential phishing or token theft after authentication. Multiple connected sources...
Blitz Panel 安全漏洞
Blitz Panel is a comprehensive administration panel for proxy servers by Whispering Wind Personal Developers. A security vulnerability exists in Blitz Panel version 1.17.0, which stems from an open redirection in the nexturl parameter in the login endpoint that could lead to phishing attacks or...