Primary

Context

kanwangzjm Funiture Open Redirect Vulnerability in Login Component

Vulnerability

An open redirect vulnerability has been identified in kanwangzjm Funiture versions prior to 71ca0fb0658b3d839d9e049ac36429207f05329b. The issue arises in the Login component, specifically within the doPost function of LoginServlet.java. The vulnerability allows for manipulation of the 'ret' parameter, leading to unauthorized redirection. This flaw can be exploited remotely and has been publicly disclosed, with an available proof-of-concept exploit.

Impact

Exploitation of this vulnerability allows for open redirect, which can be used to conduct phishing attacks by redirecting users to malicious sites.

Reproduction

To reproduce this vulnerability, send a POST request to the '/login.do' or '/user/login.page' endpoints with a manipulated 'ret' parameter that points to an external site. The application will redirect the user to the specified URL, bypassing any validation.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.7

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.7

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

kanwangzjm Funiture Open Redirect Vulnerability in Login Component

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating