Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2025-5256
PUBLISHED
More InfoOfficial Page
Assigner-Mautic
Assigner Org ID-4e531c38-7a33-45d3-98dd-d909c0d8852e
View Known Exploited Vulnerability (KEV) details
Published At-28 May, 2025 | 17:47
Updated At-28 May, 2025 | 17:57
Rejected At-
▼CVE Numbering Authority (CNA)
Open Redirect vulnerability on user unlock path

SummaryThis advisory addresses an Open Redirection vulnerability in Mautic's user unlocking endpoint. This vulnerability could be exploited by an attacker to redirect legitimate users to malicious websites, potentially leading to phishing attacks or the delivery of exploit kits. Open Redirection via returnUrl Parameter: An Open Redirection vulnerability exists in the /s/action/unlock/user.user/0 endpoint. The returnUrl parameter, intended for post-action redirection, is not properly validated. This allows an attacker to craft a URL that, when clicked by a user, redirects them to an arbitrary external website controlled by the attacker. MitigationUpdate Mautic to a version that properly validates or sanitizes the returnUrl parameter to ensure that redirects only occur to trusted, internal URLs or explicitly whitelisted domains.

Affected Products
Vendor
Mautic
Product
Mautic
Collection URL
https://packagist.org
Package Name
mautic/core
Repo
https://github.com/mautic/mautic
Default Status
unaffected
Versions
Affected
  • From > 1.0.0 before < 6.0.2, < 5.2.6, < 4.4.16 (semver)
Problem Types
TypeCWE IDDescription
CWECWE-601CWE-601 URL Redirection to Untrusted Site ('Open Redirect')
Type: CWE
CWE ID: CWE-601
Description: CWE-601 URL Redirection to Untrusted Site ('Open Redirect')
Metrics
VersionBase scoreBase severityVector
3.15.4MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Version: 3.1
Base score: 5.4
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Metrics Other Info
Impacts
CAPEC IDDescription
CAPEC-98CAPEC-98 Phishing
CAPEC ID: CAPEC-98
Description: CAPEC-98 Phishing
Solutions
Configurations
Workarounds
Exploits
Credits
reporter
Tomasz Kowalczyk
remediation developer
Tomasz Kowalczyk
remediation reviewer
Nick Vanpraet
remediation reviewer
Patryk Gruszka
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://github.com/mautic/mautic/security/advisories/GHSA-6vx9-9r2g-8373
N/A
Hyperlink: https://github.com/mautic/mautic/security/advisories/GHSA-6vx9-9r2g-8373
Resource: N/A
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found