Medium severity4.7NVD Advisory· Published Feb 19, 2026· Updated Apr 15, 2026
CVE-2025-69725
CVE-2025-69725
Description
An Open Redirect vulnerability in the go-chi/chi >=5.2.2 RedirectSlashes function allows remote attackers to redirect victim users to malicious websites using the legitimate website domain.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/go-chi/chi/v5Go | >= 5.2.2, < 5.2.4 | 5.2.4 |
Affected products
62- osv-coords61 versionspkg:apk/chainguard/cloudbeat-9.1pkg:apk/chainguard/cloudbeat-fips-9.1pkg:apk/chainguard/cloudflaredpkg:apk/chainguard/cloudflared-fipspkg:apk/chainguard/cortexpkg:apk/chainguard/cortex-fipspkg:apk/chainguard/cosmo-routerpkg:apk/chainguard/cosmo-router-fipspkg:apk/chainguard/dapr-daprd-1.15pkg:apk/chainguard/dapr-daprd-1.16pkg:apk/chainguard/dapr-daprd-1.17pkg:apk/chainguard/dapr-daprd-1.18pkg:apk/chainguard/dapr-daprd-fips-1.15pkg:apk/chainguard/dapr-daprd-fips-1.16pkg:apk/chainguard/dapr-daprd-fips-1.17pkg:apk/chainguard/dapr-daprd-fips-1.18pkg:apk/chainguard/dronepkg:apk/chainguard/drone-fipspkg:apk/chainguard/fleet-server-fips-9.1pkg:apk/chainguard/gitnesspkg:apk/chainguard/influxd-2.7pkg:apk/chainguard/kyverno-1.14pkg:apk/chainguard/kyverno-1.15pkg:apk/chainguard/kyverno-background-controller-1.14pkg:apk/chainguard/kyverno-background-controller-1.15pkg:apk/chainguard/kyverno-background-controller-fips-1.15pkg:apk/chainguard/kyverno-cleanup-controller-1.14pkg:apk/chainguard/kyverno-cleanup-controller-1.15pkg:apk/chainguard/kyverno-cleanup-controller-fips-1.15pkg:apk/chainguard/kyverno-cli-1.14pkg:apk/chainguard/kyverno-cli-1.15pkg:apk/chainguard/kyverno-cli-fips-1.15pkg:apk/chainguard/kyverno-fips-1.15pkg:apk/chainguard/kyverno-init-container-1.14pkg:apk/chainguard/kyverno-init-container-1.15pkg:apk/chainguard/kyverno-init-container-fips-1.15pkg:apk/chainguard/kyverno-reports-controller-1.14pkg:apk/chainguard/kyverno-reports-controller-1.15pkg:apk/chainguard/kyverno-reports-controller-fips-1.15pkg:apk/chainguard/reports-serverpkg:apk/chainguard/zitadel-3pkg:apk/wolfi/cloudflaredpkg:apk/wolfi/cortexpkg:apk/wolfi/dapr-daprd-1.15pkg:apk/wolfi/dapr-daprd-1.16pkg:apk/wolfi/dapr-daprd-1.17pkg:apk/wolfi/gitnesspkg:apk/wolfi/kyverno-1.14pkg:apk/wolfi/kyverno-1.15pkg:apk/wolfi/kyverno-background-controller-1.14pkg:apk/wolfi/kyverno-background-controller-1.15pkg:apk/wolfi/kyverno-cleanup-controller-1.14pkg:apk/wolfi/kyverno-cleanup-controller-1.15pkg:apk/wolfi/kyverno-cli-1.14pkg:apk/wolfi/kyverno-cli-1.15pkg:apk/wolfi/kyverno-init-container-1.14pkg:apk/wolfi/kyverno-init-container-1.15pkg:apk/wolfi/kyverno-reports-controller-1.14pkg:apk/wolfi/kyverno-reports-controller-1.15pkg:rpm/opensuse/trivy&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/warewulf4&distro=openSUSE%20Tumbleweed
< 0+ 60 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 9.1.10-r11
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0.70.0-1.1
- (no CPE)range: < 4.6.5-2.1
Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-mqqf-5wvp-8fh8ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2025-69725ghsaADVISORY
- go-chichi.comnvdWEB
- github.com/go-chi/chi/commit/6eb35881c0e438ffb663ddbad3a61babaa5e5d8aghsaWEB
- github.com/go-chi/chi/issues/1037ghsaWEB
- github.com/go-chi/chi/security/advisories/GHSA-mqqf-5wvp-8fh8nvdWEB
News mentions
0No linked articles in our index yet.