Open Redirect Vulnerability

[tsujiguchitky]

Description

OpenAM (OpenAM Consortium Edition) has an open redirect vulnerability in logout URL.

After performing some steps, accessing the logout URL with a malformed parameter can redirect the user to an arbitrary URL.