{"id":"CVE-2025-70037","details":"An issue pertaining to CWE-601: URL Redirection to Untrusted Site was discovered in linagora Twake v2023.Q1.1223. This allows attackers to obtain sensitive information and execute arbitrary code.","modified":"2026-03-15T14:53:27.915316Z","published":"2026-03-09T17:16:11.477Z","references":[{"type":"WEB","url":"https://github.com/linagora"},{"type":"ADVISORY","url":"https://gist.github.com/zcxlighthouse/0ca0e8750ad14964fa0ce24137ed346d"},{"type":"PACKAGE","url":"https://github.com/linagora/Twake"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/linagora/twake","events":[{"introduced":"0"},{"last_affected":"9c50ebf948ffdd1fbbace237e141df49d60e1484"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2023.q1.1223"}]}}],"versions":["v2020.Q3.107","v2020.Q3.3219","v2021.Q1.385","v2021.Q1.401","v2021.Q1.434","v2021.Q2.481","v2021.Q2.505","v2021.Q2.550","v2021.Q3.640","v2021.Q3.735","v2021.Q4.860","v2023.Q1.1223"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-70037.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}