ReturnFI/Blitz

Releases105

Frequency5 days 16 hours

Last Release 5 months ago

Stars1.05K

A comprehensive management panel for Hysteria2 proxy server with advanced features and user management capabilities.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-60935 ↗	Dec 24, 2025Wednesday, 24 December 2025, 15:16	6.1 MEDIUM	—
An open redirect vulnerability in the login endpoint of Blitz Panel v1.17.0 allows attackers to redirect users to malicious domains via a crafted URL. This issue affects the next_url parameter in the login endpoint and could lead to phishing or token theft after successful authentication.