CVE-2023-33405
Open Redirection vulnerability identified on BlogEngineNET CMS (version 3380 and earlier)
If a GET request to defaultaspx page contains "years=" within the URL, the application calls a function named "Redirect"
This function sets several parameters including year, month, date, page and rewrite Though the date parameter was parsed using