d:{"metadata":[["$","title","0",{"children":"CVE-2025-9072 — Mattermost versions 10.10.x <= 10.10.1, 10.5.x <= 10.5.9, 10.9.x <= 10.9.4 fail to validate the redirect_to parameter, allowing an attacker to craft a malicious link that, once a user authent — CVE Database · The Intelligence Room"}],["$","meta","1",{"name":"description","content":"Mattermost versions 10.10.x <= 10.10.1, 10.5.x <= 10.5.9, 10.9.x <= 10.9.4 fail to validate the redirect_to parameter, allowing an attacker to craft a…"}],["$","meta","2",{"name":"application-name","content":"The Intelligence Room"}],["$","link","3",{"rel":"author","href":"https://cryptobit.com"}],["$","meta","4",{"name":"author","content":"Cryptobit"}],["$","link","5",{"rel":"manifest","href":"/manifest.webmanifest","crossOrigin":"$undefined"}],["$","meta","6",{"name":"creator","content":"Cryptobit"}],["$","meta","7",{"name":"publisher","content":"Cryptobit"}],["$","meta","8",{"name":"robots","content":"index, follow"}],["$","link","9",{"rel":"canonical","href":"https://cryptobit.com/cve/CVE-2025-9072"}],["$","meta","10",{"property":"og:title","content":"CVE-2025-9072 — Mattermost versions 10.10.x <= 10.10.1, 10.5.x <= 10.5.9, 10.9.x <= 10.9.4 fail to validate the redirect_to parameter, allowing an attacker to craft a malicious link that, once a user authent"}],["$","meta","11",{"property":"og:description","content":"Mattermost versions 10.10.x <= 10.10.1, 10.5.x <= 10.5.9, 10.9.x <= 10.9.4 fail to validate the redirect_to parameter, allowing an attacker to craft a…"}],["$","meta","12",{"property":"og:url","content":"https://cryptobit.com/cve/CVE-2025-9072"}],["$","meta","13",{"property":"og:locale","content":"en"}],["$","meta","14",{"property":"og:type","content":"article"}],["$","meta","15",{"property":"article:published_time","content":"2025-09-15T11:15:34Z"}],["$","meta","16",{"property":"article:modified_time","content":"2025-09-16T16:00:26Z"}],["$","meta","17",{"name":"twitter:card","content":"summary_large_image"}],["$","meta","18",{"name":"twitter:title","content":"CVE-2025-9072 — Mattermost versions 10.10.x <= 10.10.1, 10.5.x <= 10.5.9, 10.9.x <= 10.9.4 fail to validate the redirect_to parameter, allowing an attacker to craft a malicious link that, once a user authent"}],["$","meta","19",{"name":"twitter:description","content":"Mattermost versions 10.10.x <= 10.10.1, 10.5.x <= 10.5.9, 10.9.x <= 10.9.4 fail to validate the redirect_to parameter, allowing an attacker to craft a…"}],["$","link","20",{"rel":"icon","href":"/icon.svg","type":"image/svg+xml"}],["$","link","21",{"rel":"apple-touch-icon","href":"/apple-icon.svg","sizes":"180x180","type":"image/svg+xml"}],["$","$L21","22",{}]],"error":null,"digest":"$undefined"}