Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')

DATE CVE VULNERABILITY TITLE RISK
2024-09-30 CVE-2024-9329 Open Redirect vulnerability in Eclipse Glassfish
In Eclipse Glassfish versions before 7.0.17, The Host HTTP parameter could cause the web application to redirect to the specified URL, when the requested endpoint is '/management/domain'.
network
low complexity
eclipse CWE-601
6.1
2024-09-17 CVE-2024-8897 Open Redirect vulnerability in Mozilla Firefox
Under certain conditions, an attacker with the ability to redirect users to a malicious site via an open redirect on a trusted site, may be able to spoof the address bar contents.
network
low complexity
mozilla CWE-601
6.1
2024-09-17 CVE-2024-8761 Open Redirect vulnerability in Wp-Unit Share This Image
The Share This Image plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 2.03.
network
low complexity
wp-unit CWE-601
6.1
2024-09-16 CVE-2024-4283 Open Redirect vulnerability in Gitlab
An issue has been discovered in GitLab EE affecting all versions starting from 11.1 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2.
network
low complexity
gitlab CWE-601
6.1
2024-09-12 CVE-2024-4612 Open Redirect vulnerability in Gitlab
An issue has been discovered in GitLab EE affecting all versions starting from 12.9 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2.
network
low complexity
gitlab CWE-601
6.1
2024-09-11 CVE-2024-7312 Open Redirect vulnerability in Payara
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payara Platform Payara Server (REST Management Interface modules) allows Session Hijacking.This issue affects Payara Server: from 6.0.0 before 6.18.0, from 6.2022.1 before 6.2024.9, from 5.2020.2 before 5.2022.5, from 5.20.0 before 5.67.0, from 4.1.2.191.0 before 4.1.2.191.50.
network
low complexity
payara CWE-601
6.1
2024-09-11 CVE-2024-8646 Open Redirect vulnerability in Eclipse Glassfish
In Eclipse Glassfish versions prior to 7.0.10, a URL redirection vulnerability to untrusted sites existed. This vulnerability is caused by the vulnerability (CVE-2023-41080) in the Apache code included in GlassFish. This vulnerability only affects applications that are explicitly deployed to the root context ('/').
network
low complexity
eclipse CWE-601
6.1
2024-09-09 CVE-2024-7260 Open Redirect vulnerability in Redhat Build of Keycloak and Keycloak
An open redirect vulnerability was found in Keycloak.
network
low complexity
redhat CWE-601
6.1
2024-09-09 CVE-2024-8586 Open Redirect vulnerability in Uniong Webitr
WebITR from Uniong has an Open Redirect vulnerability, which allows unauthorized remote attackers to exploit this vulnerability to forge URLs.
network
low complexity
uniong CWE-601
6.1
2024-09-08 CVE-2024-42341 Open Redirect vulnerability in Loway Queuemetrics 22.11.6/23.09/24.05
Loway - CWE-601: URL Redirection to Untrusted Site ('Open Redirect')
network
low complexity
loway CWE-601
6.1