SDM: Vulnerability with PDMWEB LINK_WITH_BOPSID URL open redirect