What the vulnerability does
01Description
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Bunkerity Bunker Web on Linux allows Phishing.This issue affects Bunker Web: 1.6.2.
CVE-2025-8066
MEDIUM
CVE-2025-8066: Bunker Web 1.6.2 - Uncontrolled external site redirect
CVSS base score
4.8/10
CVSS vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
Key dates
02Disclosure timeline
August 15, 2025
CVE published
August 25, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2026-48589 Apache Shiro: Jakarta EE open redirect via untrusted Referer in post-login redirect flow
CVE-2022-3438 Open Redirect in ikus060/rdiffweb
CVE-2020-5270 Open redirection when using back parameter of PrestaShop
CVE-2023-50963 IBM Storage Defender HTTP HOST header injection
CVE-2026-35473 WeGIA - Open Redirect - IentradaControle - listarId() - Unvalidated $_GET['nextPage']
