CVE-2025-6552 – Apache Hope-Boot Java Open Redirect Vulnerability

June 24, 2025

CVE ID : CVE-2025-6552

Published : June 24, 2025, 3:15 a.m. | 2 hours, 1 minute ago

Description : A vulnerability was found in java-aodeng Hope-Boot 1.0.0. It has been classified as problematic. Affected is the function doLogin of the file /src/main/java/com/hope/controller/WebController.java of the component Login. The manipulation of the argument redirect_url leads to open redirect. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-52972 – Apache HTTP Server Command Injection

Next Article CVE-2025-52979 – Apache HTTP Server Cross-Site Request Forgery

Highlights

CVE-2025-5208 – SourceCodester Online Hospital Management System SQL Injection Vulnerability

May 26, 2025

CVE ID : CVE-2025-5208

Published : May 26, 2025, 11:15 p.m. | 1 hour, 42 minutes ago

Description : A vulnerability, which was classified as critical, was found in SourceCodester Online Hospital Management System 1.0. This affects an unknown part of the file /admin/check_availability.php. The manipulation of the argument emailid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Power Of The Intl API: A Definitive Guide To Browser-Native Internationalization

This week in AI dev tools: GPT-5, Claude Opus 4.1, and more (August 8, 2025)

Elastic simplifies log analytics for SREs and developers with launch of Log Essentials

OpenAI launches GPT-5

I compared the best headphones from Apple, Sony, Bose, and Sonos: Here’s how the AirPods Max wins

I changed these 6 settings on my iPad to significantly improve its battery life

DistroWatch Weekly, Issue 1134

3 portable power stations I travel everywhere with (and how they differ)

Next.js PWA offline capability with Service Worker, no extra package

Next.js PWA offline capability with Service Worker, no extra package

spatie/laravel-flare

Establishing Consistent Data Foundations with Laravel’s Database Population System

Windows 11 Copilot gets free access to GPT-5 Thinking, reduced rate limits than ChatGPT Free

Windows 11 Copilot gets free access to GPT-5 Thinking, reduced rate limits than ChatGPT Free

Best Architecture AI Rendering Platform: 6 Tools Tested

Microsoft won’t kill off Chromium Edge and PWAs on Windows 10 until October 2028

CVE-2025-6552 – Apache Hope-Boot Java Open Redirect Vulnerability

Researchers Reveal ReVault Attack Targeting Dell ControlVault3 Firmware in 100+ Laptop Models

Researchers Detail Windows EPM Poisoning Exploit Chain Leading to Domain Privilege Escalation

CVE-2025-44203 – HotelDruid SQL Injection and DoS Vulnerability

9 Best Free and Open Source Linux Disk Encryption Tools

CVE-2025-4071 – PHPGurukul COVID19 Testing Management System SQL Injection Vulnerability

Cascading Layouts: A Workshop on Resilient CSS Layouts

CVE-2025-5208 – SourceCodester Online Hospital Management System SQL Injection Vulnerability

Clair Obscur: Expedition 33 preorders are open — Which version of the game is right for you?

Fedora Linux è ora una distribuzione WSL ufficiale

Record and Replay Requests With Laravel ChronoTrace

CVE-2025-6552 – Apache Hope-Boot Java Open Redirect Vulnerability

Related Posts