Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-19 | CVE-2022-47500 | Open Redirect vulnerability in Apache Helix 0.9.10/0.9.9 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Apache Software Foundation Apache Helix UI component.This issue affects Apache Helix all releases from 0.8.0 to 1.0.4. Solution: removed the the forward component since it was improper designed for UI embedding. User please upgrade to 1.1.0 to fix this issue. | 6.1 |
| 2022-12-19 | CVE-2022-46288 | Open Redirect vulnerability in Jacic Electronic Bidding Core System 6 Open redirect vulnerability in DENSHI NYUSATSU CORE SYSTEM v6 R4 and earlier allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL. | 6.1 |
| 2022-12-17 | CVE-2022-4589 | Open Redirect vulnerability in Django Terms and Conditions Project Django Terms and Conditions A vulnerability has been found in cyface Terms and Conditions Module up to 2.0.9 and classified as problematic. | 6.1 |
| 2022-12-14 | CVE-2022-23527 | Open Redirect vulnerability in multiple products mod_auth_openidc is an OpenID Certified™ authentication and authorization module for the Apache 2.x HTTP server. | 6.1 |
| 2022-12-13 | CVE-2022-41273 | Open Redirect vulnerability in SAP Contract Lifecycle Manager and Sourcing Due to improper input sanitization in SAP Sourcing and SAP Contract Lifecycle Management - version 1100, an attacker can redirect a user to a malicious website. | 6.1 |
| 2022-12-13 | CVE-2022-41275 | Open Redirect vulnerability in SAP Solution Manager 740/750 In SAP Solution Manager (Enterprise Search) - versions 740, and 750, an unauthenticated attacker can generate a link that, if clicked by a logged-in user, can be redirected to a malicious page that could read or modify sensitive information, or expose the user to a phishing attack, with little impact on confidentiality and integrity. | 6.1 |
| 2022-12-12 | CVE-2022-37927 | Open Redirect vulnerability in HPE Oneview Global Dashboard URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Hewlett Packard Enterprise HPE OneView Global Dashboard (OVGD). | 6.1 |
| 2022-12-12 | CVE-2022-46683 | Open Redirect vulnerability in Jenkins Google Login 1.4/1.6 Jenkins Google Login Plugin 1.4 through 1.6 (both inclusive) improperly determines that a redirect URL after login is legitimately pointing to Jenkins. | 6.1 |
| 2022-12-07 | CVE-2022-45917 | Open Redirect vulnerability in Ilias ILIAS before 7.16 has an Open Redirect. | 6.1 |
| 2022-12-06 | CVE-2022-41559 | Open Redirect vulnerability in Tibco Nimbus 10.5.0 The Web Client component of TIBCO Software Inc.'s TIBCO Nimbus contains an easily exploitable vulnerability that allows an unauthenticated attacker with network access to exploit an open redirect on the affected system. | 9.3 |