Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')

DATE CVE VULNERABILITY TITLE RISK
2023-05-03 CVE-2023-0155 Open Redirect vulnerability in Gitlab
An issue has been discovered in GitLab CE/EE affecting all versions before 15.8.5, 15.9.4, 15.10.1.
network
low complexity
gitlab CWE-601
5.4
2023-05-02 CVE-2023-2000 Open Redirect vulnerability in Mattermost Desktop
Mattermost Desktop App fails to validate a mattermost server redirection and navigates to an arbitrary website
network
low complexity
mattermost CWE-601
5.4
2023-04-14 CVE-2022-46886 Open Redirect vulnerability in Servicenow Quebec/Rome/Sandiego
There exists an open redirect within the response list update functionality of ServiceNow.
network
low complexity
servicenow CWE-601
6.1
2023-04-11 CVE-2023-22641 Open Redirect vulnerability in Fortinet Fortios and Fortiproxy
A url redirection to untrusted site ('open redirect') in Fortinet FortiOS version 7.2.0 through 7.2.3, FortiOS version 7.0.0 through 7.0.9, FortiOS versions 6.4.0 through 6.4.12, FortiOS all versions 6.2, FortiOS all versions 6.0, FortiProxy version 7.2.0 through 7.2.2, FortiProxy version 7.0.0 through 7.0.8, FortiProxy all versions 2.0, FortiProxy all versions 1.2, FortiProxy all versions 1.1, FortiProxy all versions 1.0 allows an authenticated attacker to execute unauthorized code or commands via specially crafted requests.
network
low complexity
fortinet CWE-601
5.4
2023-03-28 CVE-2022-1230 Open Redirect vulnerability in Samsung Galaxy S21 Firmware
This vulnerability allows local attackers to execute arbitrary code on affected installations of Samsung Galaxy S21 prior to 4.5.40.5 phones.
local
low complexity
samsung CWE-601
3.9
2023-03-27 CVE-2022-2237 Open Redirect vulnerability in Redhat Keycloak Node.Js Adapter and Single Sign-On
A flaw was found in the Keycloak Node.js Adapter.
network
low complexity
redhat CWE-601
6.1
2023-03-27 CVE-2022-48358 Open Redirect vulnerability in Huawei Emui and Harmonyos
The BatteryHealthActivity has a redirection vulnerability.
network
low complexity
huawei CWE-601
7.4
2023-03-27 CVE-2023-28628 Open Redirect vulnerability in Lambdaisland URI
lambdaisland/uri is a pure Clojure/ClojureScript URI library.
network
low complexity
lambdaisland CWE-601
6.1
2023-03-25 CVE-2016-15030 Open Redirect vulnerability in Twofactorauth Project Twofactorauth
A vulnerability classified as problematic has been found in Arno0x TwoFactorAuth.
network
low complexity
twofactorauth-project CWE-601
6.1
2023-03-22 CVE-2022-37940 Open Redirect vulnerability in HPE products
Potential security vulnerabilities have been identified in the HPE FlexFabric 5700 Switch Series.
network
low complexity
hpe CWE-601
6.1