Open Redirect Vulnerability in Astun Technology iShare Maps 5.4.0
CVE-2025-6089

5.3MEDIUM

Key Information:

Vendor

Astun Technology

Status
Ishare Maps
Vendor
CVE Published:
15 June 2025

What is CVE-2025-6089?

A vulnerability exists in Astun Technology's iShare Maps version 5.4.0, which affects the atCheckJS.aspx file. An attacker can manipulate the 'ref' argument to facilitate an open redirect attack, allowing malicious redirects to untrusted URLs. This can enable various attacks, including phishing and credential theft. Remote exploitation is possible, and while the vendor was informed of this issue, there has been no official response.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

iShare Maps 5.4.0

References

https://vuldb.com/?id.312556
vdb-entrytechnical-description
https://vuldb.com/?ctiid.312556
signaturepermissions-required
https://vuldb.com/?submit.587876
third-party-advisory

CVSS V4

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

pad1ryoshi (VulDB User)
JSON
.