Trenshyiavv

Name of the Vulnerable Software and Affected Versions: TOTVS Portal Meu RH versions up to 12.1.17 Description: A flaw has been identified in the Password Reset Handler component that may allow for an open redirect. Manipulation of the `redirectUrl` argument can lead to a redirect to an arbitrary URL. The attack can be performed remotely. This vulnerability only affects products that are no longer supported by the maintainer. Recommendations: Upgrade to version 12.1.2410.274. Upgrade to version 12.1.2502.178. Upgrade to version 12.1.2506.121.