ID: 6622 Title: Fixed possible open redirect on login page Component: Multisite Level: 1 Class: Security fix Version: 1.6.0i1 It was possible to redirect an user to external websites through manipulating GET parameters. To exploit this vulnerability, an attacker needs to trick a user into following a crafted URL. The attack only works if the user does not notice that he is redirected to a different URL.