Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-07 | CVE-2023-47779 | Open Redirect vulnerability in Crmperks Integration for Constant Contact and Contact Form 7, Wpforms, Elementor, Ninja URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks. | 6.1 |
| 2023-12-07 | CVE-2023-48325 | Open Redirect vulnerability in Pluginops Landing Page Builder URL Redirection to Untrusted Site ('Open Redirect') vulnerability in PluginOps Landing Page Builder – Lead Page – Optin Page – Squeeze Page – WordPress Landing Pages.This issue affects Landing Page Builder – Lead Page – Optin Page – Squeeze Page – WordPress Landing Pages: from n/a through 1.5.1.5. | 6.1 |
| 2023-12-06 | CVE-2023-46688 | Open Redirect vulnerability in Pleasanter Open redirect vulnerability in Pleasanter 1.3.47.0 and earlier allows a remote unauthenticated attacker to redirect users to arbitrary web sites via a specially crafted URL. | 6.1 |
| 2023-12-04 | CVE-2023-48815 | Open Redirect vulnerability in Keking Kkfileview 4.1.0/4.3.0 kkFileView v4.3.0 is vulnerable to Incorrect Access Control. | 6.1 |
| 2023-12-01 | CVE-2023-49281 | Open Redirect vulnerability in Cainor Calendarinho Calendarinho is an open source calendaring application to manage large teams of consultants. | 6.1 |
| 2023-11-28 | CVE-2023-42502 | Open Redirect vulnerability in Apache Superset An authenticated attacker with update datasets permission could change a dataset link to an untrusted site by spoofing the HTTP Host header, users could be redirected to this site when clicking on that specific dataset. | 5.4 |
| 2023-11-27 | CVE-2023-47168 | Open Redirect vulnerability in Mattermost Mattermost fails to properly check a redirect URL parameter allowing for an open redirect was possible when the user clicked "Back to Mattermost" after providing a invalid custom url scheme in /oauth/{service}/mobile_login?redirect_to= | 6.1 |
| 2023-11-21 | CVE-2023-49104 | Open Redirect vulnerability in Owncloud Oauth2 An issue was discovered in ownCloud owncloud/oauth2 before 0.6.1, when Allow Subdomains is enabled. | 6.1 |
| 2023-11-21 | CVE-2023-49061 | Open Redirect vulnerability in Mozilla Firefox An attacker could have performed HTML template injection via Reader Mode and exfiltrated user information. | 6.1 |
| 2023-11-20 | CVE-2023-5610 | Open Redirect vulnerability in S-Sols Seraphinite Accelerator The Seraphinite Accelerator WordPress plugin before 2.2.29 does not validate the URL to redirect any authenticated user to, leading to an arbitrary redirect | 5.4 |