Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')

DATE CVE VULNERABILITY TITLE RISK
2023-09-14 CVE-2023-40779 Open Redirect vulnerability in Icewarp Deep Castle G2 13.0.1.2
An issue in IceWarp Mail Server Deep Castle 2 v.13.0.1.2 allows a remote attacker to execute arbitrary code via a crafted request to the URL.
network
low complexity
icewarp CWE-601
6.1
2023-09-11 CVE-2023-41609 Open Redirect vulnerability in Couchcms 2.3
An open redirect vulnerability in the sanitize_url() parameter of CouchCMS v2.3 allows attackers to redirect a victim user to an arbitrary web site via a crafted URL.
network
low complexity
couchcms CWE-601
6.1
2023-09-08 CVE-2023-40306 Open Redirect vulnerability in SAP S/4Hana
SAP S/4HANA Manage Catalog Items and Cross-Catalog searches Fiori apps allow an attacker to redirect users to a malicious site due to insufficient URL validation.
network
low complexity
sap CWE-601
6.1
2023-09-06 CVE-2023-20263 Open Redirect vulnerability in Cisco Hyperflex HX Data Platform 5.0/5.5
A vulnerability in the web-based management interface of Cisco HyperFlex HX Data Platform could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. This vulnerability is due to improper input validation of the parameters in an HTTP request.
network
low complexity
cisco CWE-601
6.1
2023-09-05 CVE-2023-38574 Open Redirect vulnerability in I-Pro Video Insight
Open redirect vulnerability in VI Web Client prior to 7.9.6 allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL.
network
low complexity
i-pro CWE-601
6.1
2023-09-03 CVE-2023-39371 Open Redirect vulnerability in Startrinity Softswitch 20230216
StarTrinity Softswitch version 2023-02-16 - Open Redirect (CWE-601)
network
low complexity
startrinity CWE-601
6.1
2023-09-01 CVE-2023-1279 Open Redirect vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions starting from 4.1 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 where it was possible to create a URL that would redirect to a different project.
network
low complexity
gitlab CWE-601
6.1
2023-08-22 CVE-2022-44215 Open Redirect vulnerability in Southrivertech Titan FTP Server
There is an open redirect vulnerability in Titan FTP server 19.0 and below.
network
low complexity
southrivertech CWE-601
6.1
2023-08-22 CVE-2022-45582 Open Redirect vulnerability in Openstack Horizon
Open Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the success_url parameter.
network
low complexity
openstack CWE-601
6.1
2023-08-09 CVE-2023-38998 Open Redirect vulnerability in Opnsense
An open redirect in the Login page of OPNsense Community Edition before 23.7 and Business Edition before 23.4.2 allows attackers to redirect a victim user to an arbitrary web site via a crafted URL.
network
low complexity
opnsense CWE-601
6.1