Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-07-15 | CVE-2024-6289 | Open Redirect vulnerability in Wpserveur WPS Hide Login The WPS Hide Login WordPress plugin before 1.9.16.4 does not prevent redirects to the login page via the auth_redirect WordPress function, allowing an unauthenticated visitor to access the hidden login page. | 6.1 |
2024-06-27 | CVE-2024-4704 | Open Redirect vulnerability in Rocklobster Contact Form 7 The Contact Form 7 WordPress plugin before 5.9.5 has an open redirect that allows an attacker to utilize a false URL and redirect to the URL of their choosing. | 6.1 |
2024-06-26 | CVE-2024-4604 | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Magarsus Consultancy SSO (Single Sign On) allows Manipulating Hidden Fields.This issue affects SSO (Single Sign On): from 1.0 before 1.1. | 6.1 |
2024-06-20 | CVE-2024-3597 | Open Redirect vulnerability in Myrecorp Export WP Page to Static Html/Css 2.1.9 The Export WP Page to Static HTML/CSS plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 2.2.2. | 6.1 |
2024-06-13 | CVE-2024-3032 | Open Redirect vulnerability in Themify Builder Themify Builder WordPress plugin before 7.5.8 does not validate a parameter before redirecting the user to its value, leading to an Open Redirect issue | 6.1 |
2024-04-18 | CVE-2024-28076 | The SolarWinds Platform was susceptible to a Arbitrary Open Redirection Vulnerability. high complexity CWE-601 | 7.0 |
2024-03-28 | CVE-2024-31135 | Open Redirect vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2024.03 open redirect was possible on the login page | 6.1 |
2024-02-21 | CVE-2022-45169 | Open Redirect vulnerability in Liveboxcloud Vdesk An issue was discovered in LIVEBOX Collaboration vDesk through v031. | 5.4 |
2024-02-11 | CVE-2024-25715 | Open Redirect vulnerability in Glewlwyd SSO Server Project Glewlwyd SSO Server Glewlwyd SSO server 2.x through 2.7.6 allows open redirection via redirect_uri. | 6.1 |
2024-02-06 | CVE-2024-24291 | Open Redirect vulnerability in Yzmcms 7.0 An issue in the component /member/index/login of yzmcms v7.0 allows attackers to direct users to malicious sites via a crafted URL. | 6.1 |