How to fix CVE-2025-6286?

During next maintenance window: Apply vendor patches when convenient. Monitor vendor channels for updates.

Is Open Redirect affected by CVE-2025-6286?

CVE-2025-6286 is a low-severity vulnerability in A vulnerability classified as problematic (CVSS 3.5). The limited severity suggests constrained impact, typically requiring specific conditions or local access for exploitation. Apply vendor updates when available as part of routine maintenance.

Open Redirect CVE-2025-6286

EUVD-2025-18702 LOW

URL Redirection to Untrusted Site (Open Redirect) (CWE-601)

2025-06-19 [email protected]

Open Redirect PHP

3.5

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Unchanged

Confidentiality

None

Integrity

Low

Availability

None

Lifecycle Timeline

Analysis Generated

Mar 15, 2026 - 00:08 vuln.today

EUVD ID Assigned

Mar 15, 2026 - 00:08 euvd

EUVD-2025-18702

CVE Published

Jun 19, 2025 - 23:15 nvd

LOW 3.5

DescriptionNVD

A vulnerability classified as problematic has been found in PHPGurukul COVID19 Testing Management System 2021. Affected is an unknown function of the file /search-report-result.php. The manipulation of the argument q leads to open redirect. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Analysis

Technical ContextAI

An open redirect vulnerability allows attackers to redirect users from a trusted domain to an arbitrary external URL through manipulation of redirect parameters. This vulnerability is classified as URL Redirection to Untrusted Site (Open Redirect) (CWE-601).

RemediationAI

Validate redirect URLs against a whitelist of allowed destinations. Use relative URLs for redirects. Warn users before redirecting to external sites.

CVE-2025-6286 vulnerability details – vuln.today

Back