Primary

Context

V-SOL GPON/EPON OLT Platform Open Redirect Vulnerability

Vulnerability

An open redirect vulnerability has been identified in V-SOL GPON/EPON OLT Platform version 2.03. This vulnerability allows attackers to manipulate the 'parent' GET parameter in the 'bindProfile.html' script, leading to unauthorized redirection of logged-in users to arbitrary websites. The issue arises from inadequate input validation in the redirection mechanism.

Impact

Exploitation of this vulnerability could facilitate phishing attacks by redirecting users to malicious websites.

Reproduction

To reproduce this vulnerability, send a GET request to the 'bindProfile.html' script with a crafted 'parent' parameter that points to an external website. Ensure the request is made from a logged-in user on a trusted domain, as the vulnerability relies on the redirection being perceived as legitimate.

Added: Jan 8, 2026, 12:29 AM

Updated: Jan 8, 2026, 12:29 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.7

remediation

0.0

relevance

1.9

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.7

remediation

0.0

relevance

1.9

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

V-SOL GPON/EPON OLT Platform Open Redirect Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating