CVE-2025-9072 | Mattermost up to 10.5.9/10.9.4/10.10.1 Link redirect_to

A vulnerability was found in Mattermost up to 10.5.9/10.9.4/10.10.1. It has been rated as problematic. This affects an unknown part of the component Link Handler. The manipulation of the argument redirect_to leads to open redirect.

This vulnerability is uniquely identified as CVE-2025-9072. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More