A vulnerability was found in Roxy-WI up to 8.2.6.4 . It has been rated as problematic . Affected by this issue is the function window.location.replace . This manipulation causes open redirect. This vulnerability is registered as CVE-2026-45566 . Remote exploitation of the attack is possible. No exploit is available.