A vulnerability was found in FOSSBilling up to 0.7.x . It has been declared as problematic . The affected element is the function extension_meta of the component Redirect Module . The manipulation results in open redirect. This vulnerability is known as CVE-2026-43924 . It is possible to launch the attack remotely. No exploit is available. It is recommended to upgrade the affected component.