Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-08 | CVE-2020-21038 | Open Redirect vulnerability in Typecho 1.117.10.30 Open redirect vulnerability in typecho 1.1-17.10.30-release via the referer parameter to Login.php. | 6.1 |
| 2023-05-03 | CVE-2022-43950 | Open Redirect vulnerability in Fortinet Fortinac and Fortinac-F A URL redirection to untrusted site ('Open Redirect') vulnerability [CWE-601] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.1 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions may allow an unauthenticated attacker to redirect users to any arbitrary website via a crafted URL. | 4.7 |
| 2023-05-03 | CVE-2023-0155 | Open Redirect vulnerability in Gitlab An issue has been discovered in GitLab CE/EE affecting all versions before 15.8.5, 15.9.4, 15.10.1. | 5.4 |
| 2023-05-02 | CVE-2023-2000 | Open Redirect vulnerability in Mattermost Desktop Mattermost Desktop App fails to validate a mattermost server redirection and navigates to an arbitrary website | 5.4 |
| 2023-04-14 | CVE-2022-46886 | Open Redirect vulnerability in Servicenow Quebec/Rome/Sandiego There exists an open redirect within the response list update functionality of ServiceNow. | 6.1 |
| 2023-04-11 | CVE-2023-22641 | Open Redirect vulnerability in Fortinet Fortios and Fortiproxy A url redirection to untrusted site ('open redirect') in Fortinet FortiOS version 7.2.0 through 7.2.3, FortiOS version 7.0.0 through 7.0.9, FortiOS versions 6.4.0 through 6.4.12, FortiOS all versions 6.2, FortiOS all versions 6.0, FortiProxy version 7.2.0 through 7.2.2, FortiProxy version 7.0.0 through 7.0.8, FortiProxy all versions 2.0, FortiProxy all versions 1.2, FortiProxy all versions 1.1, FortiProxy all versions 1.0 allows an authenticated attacker to execute unauthorized code or commands via specially crafted requests. | 5.4 |
| 2023-03-28 | CVE-2022-1230 | Open Redirect vulnerability in Samsung Galaxy S21 Firmware This vulnerability allows local attackers to execute arbitrary code on affected installations of Samsung Galaxy S21 prior to 4.5.40.5 phones. | 3.9 |
| 2023-03-27 | CVE-2022-2237 | Open Redirect vulnerability in Redhat Keycloak Node.Js Adapter and Single Sign-On A flaw was found in the Keycloak Node.js Adapter. | 6.1 |
| 2023-03-27 | CVE-2022-48358 | Open Redirect vulnerability in Huawei Emui and Harmonyos The BatteryHealthActivity has a redirection vulnerability. | 7.4 |
| 2023-03-27 | CVE-2023-28628 | Open Redirect vulnerability in Lambdaisland URI lambdaisland/uri is a pure Clojure/ClojureScript URI library. | 6.1 |