VYPR
Medium severity4.7NVD Advisory· Published Jul 23, 2025· Updated Jun 5, 2026

CVE-2025-4296

CVE-2025-4296

Description

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in HotelRunner B2B allows Forceful Browsing.

This issue affects B2B: before 04.06.2025.

Affected products

1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.