Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-22 | CVE-2022-45413 | Open Redirect vulnerability in Mozilla Firefox Using the <code>S.browser_fallback_url parameter</code> parameter, an attacker could redirect a user to a URL and cause SameSite=Strict cookies to be sent.<br>*This issue only affects Firefox for Android. | 6.1 |
| 2022-12-19 | CVE-2022-38662 | Open Redirect vulnerability in Hcltech HCL Digital Experience 8.5/9.0/9.5 In HCL Digital Experience, URLs can be constructed to redirect users to untrusted sites. | 6.1 |
| 2022-12-19 | CVE-2022-46288 | Open Redirect vulnerability in Jacic Electronic Bidding Core System 6 Open redirect vulnerability in DENSHI NYUSATSU CORE SYSTEM v6 R4 and earlier allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL. | 6.1 |
| 2022-12-14 | CVE-2022-23527 | Open Redirect vulnerability in multiple products mod_auth_openidc is an OpenID Certified™ authentication and authorization module for the Apache 2.x HTTP server. | 6.1 |
| 2022-12-13 | CVE-2022-41275 | Open Redirect vulnerability in SAP Solution Manager 740/750 In SAP Solution Manager (Enterprise Search) - versions 740, and 750, an unauthenticated attacker can generate a link that, if clicked by a logged-in user, can be redirected to a malicious page that could read or modify sensitive information, or expose the user to a phishing attack, with little impact on confidentiality and integrity. | 6.1 |
| 2022-12-12 | CVE-2022-37927 | Open Redirect vulnerability in HPE Oneview Global Dashboard URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Hewlett Packard Enterprise HPE OneView Global Dashboard (OVGD). | 6.1 |
| 2022-12-12 | CVE-2022-46683 | Open Redirect vulnerability in Jenkins Google Login 1.4/1.6 Jenkins Google Login Plugin 1.4 through 1.6 (both inclusive) improperly determines that a redirect URL after login is legitimately pointing to Jenkins. | 6.1 |
| 2022-12-07 | CVE-2022-45917 | Open Redirect vulnerability in Ilias ILIAS before 7.16 has an Open Redirect. | 6.1 |
| 2022-12-06 | CVE-2022-41559 | Open Redirect vulnerability in Tibco Nimbus 10.5.0 The Web Client component of TIBCO Software Inc.'s TIBCO Nimbus contains an easily exploitable vulnerability that allows an unauthenticated attacker with network access to exploit an open redirect on the affected system. | 9.3 |
| 2022-12-05 | CVE-2022-43479 | Open Redirect vulnerability in Ss-Proj Shirasagi 1.14.4/1.15.0 Open redirect vulnerability in SHIRASAGI v1.14.4 to v1.15.0 allows a remote unauthenticated attacker to redirect users to an arbitrary web site and conduct a phishing attack. | 6.1 |