Open redirect vulnerability

In this report the researcher discovered an open redirect vulnerability on one of our subdomains. The subdomain exists primarily to direct users to a different site, but it was possible to exploit by adding unexpected input in a subdirectory of the URL. This allowed an attacker to potentially create a link that led to a domain of the attacker's choosing. After the researcher shared this behavior with us, we were able to correct it and resolve the vulnerability.