CNNVD-202509-1480 Information

CNNVD ID

CNNVD-202509-1480

Related CVE

CVE-2025-10229

• CNNVD Published: 2025-09-10

Description (Chinese)

Freshworks Platform是美国Freshworks公司的一个客户服务软件平台。 Freshworks Platform 1.2.3及之前版本存在输入验证错误漏洞，该漏洞源于文件/api/v2/logout对参数post_logout_redirect_uri的错误操作导致开放重定向。

Description (English)

Freshworks Platform is a customer service software platform for Freshworks in the United States. Freshworks Platform 1.2.3 and previous versions have input validation error holes, which stem from the error of the file/api/v2/logout to the parameter post logout redirect uri, leading to open redirection.

Hazard Level

High

Vulnerability Type

输入验证错误

Affected Vendor

FriendlyWrt

Published

2025-09-10

Last Modified

2026-02-24

References

https://drive.google.com/file/d/1U-xaC1pqnregoZGefyNAykhUnvnuG6hb/view?usp=sharing https://vuldb.com/?ctiid.323487 https://vuldb.com/?id.323487 https://vuldb.com/?submit.641089