Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')

DATE CVE VULNERABILITY TITLE RISK
2023-03-20 CVE-2023-0681 Open Redirect vulnerability in Rapid7 Insightvm
Rapid7 InsightVM versions 6.6.178 and lower suffers from an open redirect vulnerability, whereby an attacker has the ability to redirect the user to a site of the attacker’s choice using the ‘page’ parameter of the ‘data/console/redirect’ component of the application.
network
low complexity
rapid7 CWE-601
6.1
2023-03-09 CVE-2022-3381 Open Redirect vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions starting from 10.0 to 15.7.8, 15.8 prior to 15.8.4 and 15.9 prior to 15.9.2.
network
low complexity
gitlab CWE-601
6.1
2023-03-09 CVE-2022-4317 Open Redirect vulnerability in Gitlab Dynamic Application Security Testing Analyzer
An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 1.47 before 3.0.51, which sends custom request headers in redirects.
network
low complexity
gitlab CWE-601
6.1
2023-03-06 CVE-2023-24735 Open Redirect vulnerability in Sigb PMB 7.4.6
PMB v7.4.6 was discovered to contain an open redirect vulnerability via the component /opac_css/pmb.php.
network
low complexity
sigb CWE-601
6.1
2023-03-06 CVE-2023-22432 Open Redirect vulnerability in Web2Py
Open redirect vulnerability exists in web2py versions prior to 2.23.1.
network
low complexity
web2py CWE-601
6.1
2023-03-04 CVE-2020-36665 Open Redirect vulnerability in Seotool Project Seotool
A vulnerability was found in Artesãos SEOTools up to 0.17.1 and classified as critical.
network
low complexity
seotool-project CWE-601
6.1
2023-03-04 CVE-2020-36663 Open Redirect vulnerability in Seotool Project Seotool
A vulnerability, which was classified as problematic, was found in Artesãos SEOTools up to 0.17.1.
network
low complexity
seotool-project CWE-601
6.1
2023-03-03 CVE-2022-2837 Open Redirect vulnerability in Coredns.Io Coredns
A flaw was found in coreDNS.
network
low complexity
coredns-io CWE-601
6.1
2023-02-28 CVE-2023-27292 Open Redirect vulnerability in Opencats 0.9.6
An open redirect vulnerability exposes OpenCATS to template injection due to improper validation of user-supplied GET parameters.
network
low complexity
opencats CWE-601
5.4
2023-02-23 CVE-2022-46784 Open Redirect vulnerability in Squaredup Dashboard Server
SquaredUp Dashboard Server SCOM edition before 5.7.1 GA allows open redirection.
network
low complexity
squaredup CWE-601
6.1