2023-12-09 00:00:00
mitre
PUBLISHED
The next parameter in the /accounts/login endpoint of Seafile 9.0.6 allows attackers to redirect users to arbitrary sites.