Security
Headlines

Headlines Latest CVEs

Headline

GHSA-vfm5-cr22-jg3m: ABP Account Module has an Open Redirect through Improper validation in its register function

An open redirect vulnerability exists in the Account module in Volosoft ABP Framework >= 5.1.0 and < 10.0.0-rc.2. Improper validation of the returnUrl parameter in the register function allows an attacker to redirect users to arbitrary external domains.

11 hours ago

#vulnerability #web #git #intel

Skip to content

Navigation Menu

- AI CODE CREATION
  - GitHub CopilotWrite better code with AI
  - GitHub SparkBuild and deploy intelligent apps
  - GitHub ModelsManage and compare prompts
  - MCP RegistryNewIntegrate external tools

View all features

Pricing

Provide feedback

Saved searches****Use saved searches to filter your results more quickly

Sign up

Appearance settings

GitHub Advisory Database
GitHub Reviewed
CVE-2025-65581

ABP Account Module has an Open Redirect through Improper validation in its register function

Moderate severity GitHub Reviewed Published Dec 16, 2025 to the GitHub Advisory Database • Updated Dec 16, 2025

Package

nuget Volo.Abp.Account.Web (NuGet)

Affected versions

>= 5.1.0, < 10.0.0-rc.2

Patched versions

10.0.0-rc.2

Description

Published to the GitHub Advisory Database

Dec 16, 2025

Last updated

Dec 16, 2025

EPSS score

ghsa: Latest News

GHSA-wphj-fx3q-84ch: systeminformation has a Command Injection vulnerability in fsSize() function on Windows

7 hours ago

GHSA-3f5f-xgrj-97pf: Parse Server is vulnerable to Server-Side Request Forgery (SSRF) via Instagram OAuth Adapter

7 hours ago

GHSA-cfpf-hrx2-8rv6: Expr has Denial of Service via Unbounded Recursion in Builtin Functions

7 hours ago

GHSA-g239-q96q-x4qm: @vitejs/plugin-rsc has an Arbitrary File Read via `/__vite_rsc_findSourceMapURL` Endpoint

7 hours ago

GHSA-c623-f998-8hhv: SIPGO is Vulnerable to Response DoS via Nil Pointer Dereference

8 hours ago