CVE-2025-8737

Name of the Vulnerable Software and Affected Versions zlt2000 microservices-platform versions through 6.0.0

Description A problematic issue exists in zlt2000 microservices-platform. The issue is related to an open redirect vulnerability within the onLogoutSuccess function located in the file src/main/java/com/central/oauth/handler/OauthLogoutSuccessHandler.java. Manipulation of the redirect url argument can trigger the vulnerability, allowing for remote exploitation. The exploit has been publicly disclosed.

Recommendations versions prior to 6.0.1 At the moment, there is no information about a newer version that contains a fix for this vulnerability.