Security Advisory

CVE-2018-15683

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-09-05 21:00:00

Last updated 2024-08-05 10:01:54

Assigner mitre

State PUBLISHED

Description

An issue was discovered in BTITeam XBTIT. The "returnto" parameter of the login page is vulnerable to an open redirect due to a lack of validation. If a user is already logged in when accessing the page, they will be instantly redirected.

← Browse all CVEs View on cve.org ↗