Primary

Context

HotelRunner B2B Open Redirect Vulnerability

Vulnerability

A URL redirection vulnerability allowing open redirects has been identified in HotelRunner B2B, prior to June 4, 2025. This vulnerability can be exploited to forcefully browse to untrusted sites.

Impact

Exploitation of this vulnerability could lead to forceful browsing, allowing users to be redirected to potentially malicious sites.

Remediation

Users are advised to upgrade to versions released on or after June 4, 2025.

Added: Jul 23, 2025, 12:23 PM

Updated: Jul 23, 2025, 12:23 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

6.4

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

6.4

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HotelRunner B2B Open Redirect Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating