Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-18 | CVE-2024-45082 | Open Redirect vulnerability in IBM Cognos Analytics IBM Cognos Analytics 11.2.0 through 11.2.4 and 12.0.0 through 12.0.3 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. | 5.2 |
| 2024-12-09 | CVE-2024-38485 | Open Redirect vulnerability in Dell Elastic Cloud Storage Dell ECS, versions prior to 3.8.0, contain(s) a Host Header Injection Vulnerability. | 4.3 |
| 2024-11-15 | CVE-2022-20634 | A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to redirect a user to an undesired web page. This vulnerability is due to improper input validation of the URL parameters in an HTTP request that is sent to an affected system. | 4.7 |
| 2024-10-29 | CVE-2024-25566 | Open Redirect vulnerability in Forgerock Access Management An Open-Redirect vulnerability exists in PingAM where well-crafted requests may cause improper validation of redirect URLs. | 6.1 |
| 2024-10-28 | CVE-2024-50463 | Open Redirect vulnerability in Sunshinephotocart Sunshine Photo Cart URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WP Sunshine Sunshine Photo Cart.This issue affects Sunshine Photo Cart: from n/a through 3.2.9. | 6.1 |
| 2024-10-11 | CVE-2024-47353 | Open Redirect vulnerability in Quomodosoft Elementsready URL Redirection to Untrusted Site ('Open Redirect') vulnerability in QuomodoSoft ElementsReady Addons for Elementor.This issue affects ElementsReady Addons for Elementor: from n/a through 6.4.2. | 6.1 |
| 2024-10-10 | CVE-2024-47648 | Open Redirect vulnerability in Theeventprime Eventprime URL Redirection to Untrusted Site ('Open Redirect') vulnerability in EventPrime Events EventPrime.This issue affects EventPrime: from n/a through 4.0.4.5. | 6.1 |
| 2024-10-04 | CVE-2024-43683 | Open Redirect vulnerability in Microchip Timeprovider 4100 Firmware URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Microchip TimeProvider 4100 allows XSS Through HTTP Headers.This issue affects TimeProvider 4100: from 1.0. | 6.1 |
| 2024-10-04 | CVE-2024-38037 | Open Redirect vulnerability in Esri Portal for Arcgis 10.9.1/11.0 There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.0 and 10.9.1 that may allow a remote, unauthenticated attacker to craft a URL that could redirect a victim to an arbitrary website, simplifying phishing attacks. | 6.1 |
| 2024-10-04 | CVE-2024-8148 | Open Redirect vulnerability in Esri Portal for Arcgis There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 10.8.1 - 11.2 that may allow a remote, unauthenticated attacker to craft a URL that could redirect a victim to an arbitrary website, simplifying phishing attacks. | 6.1 |