CVE-2025-6701 – Xuxueli xxl-sso Open Redirect Vulnerability

June 26, 2025

CVE ID : CVE-2025-6701

Published : June 26, 2025, 4:15 p.m. | 51 minutes ago

Description : A vulnerability, which was classified as problematic, has been found in Xuxueli xxl-sso 1.1.0. This issue affects some unknown processing of the file /xxl-sso-server/doLogin. The manipulation of the argument redirect_url leads to open redirect. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6702 – “Litemall Remote Unauthorized Access Vulnerability”

Next Article CVE-2025-6700 – Xuxueli xxl-sso Remote Cross-Site Scripting Vulnerability

How AI further empowers value stream management

12 Top ReactJS Development Companies in 2025

Not sure where to go with AI? Here’s your roadmap.

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

The next big HDMI leap has arrived – here’s how these 16K cables will shake things up

Here’s how you can still trade in any phone at Verizon to get an iPhone, iPad, and Apple Watch free

Anthropic has a plan to combat AI-triggered job losses predicted by its CEO

Forget Google and Microsoft: OpenAI may be building the ultimate work suite of apps and services

Say hello to ECMAScript 2025

Say hello to ECMAScript 2025

Ecma International approves ECMAScript 2025: What’s new?

Building Together: PRFT Colleagues Volunteer with Atlanta Habitat for Humanity

Fix Elden Ring Nightreign Connection Errors And Server Login Failure PC

Fix Elden Ring Nightreign Connection Errors And Server Login Failure PC

Fix Now EAC Error 20006 in Elden Ring: Nightreign [6 Easy Tricks]

Fix Now Elden Ring Nightreign EAC Error 30005 (CreateFile Failed)

CVE-2025-6701 – Xuxueli xxl-sso Open Redirect Vulnerability

New Linux Flaws Enable Full Root Access via PAM and Udisks Across Major Distributions

⚡ Weekly Recap: Chrome 0-Day, 7.3 Tbps DDoS, MFA Bypass Tricks, Banking Trojan and More

CVE-2025-6468 – Code-projects Online Bidding System SQL Injection Vulnerability

A glimpse of the next generation of AlphaFold

Best Free Alternatives to Apple’s Remove Background Quick Action

CVE-2024-11617 – “Envolve Plugin WordPress File Upload Vulnerability”

Gemini breaks new ground: a faster model, longer context and AI agents

About Impact. Presenting the Change You’ve Made Through Your Decisions as a Designer

CVE-2025-5349 – Citrix NetScaler ADC Unauthenticated Remote Code Execution Vulnerability

CVE-2025-46778 – Apache HTTP Server Denial of Service

CVE-2025-6701 – Xuxueli xxl-sso Open Redirect Vulnerability

Related Posts