CVE-2025-12140
The CVE-2025-12140 entry describes an insecure redirectToUrl mechanism in Wirtualna Uczelnia, where the value of the redirectUrlParameter is misprocessed, causing the entered string to be interpreted as a Java expression. This allows an unauthenticated attacker to trigger arbitrary code execution...