Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-12 | CVE-2022-22797 | Open Redirect vulnerability in Sysaid 21.1.30/21.1.50/21.4.45 Sysaid – sysaid Open Redirect - An Attacker can change the redirect link at the parameter "redirectURL" from"GET" request from the url location: /CommunitySSORedirect.jsp?redirectURL=https://google.com. | 6.1 |
| 2022-05-05 | CVE-2021-44054 | Open Redirect vulnerability in Qnap Qts, Quts Hero and Qutscloud An open redirect vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero and QTS. | 6.1 |
| 2022-05-04 | CVE-2022-20794 | Open Redirect vulnerability in Cisco Telepresence Collaboration Endpoint Multiple vulnerabilities in the web engine of Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow a remote attacker to cause a denial of service (DoS) condition, view sensitive data on an affected device, or redirect users to an attacker-controlled destination. | 4.7 |
| 2022-05-04 | CVE-2022-27461 | Open Redirect vulnerability in Nopcommerce In nopCommerce 4.50.1, an open redirect vulnerability can be triggered by luring a user to authenticate to a nopCommerce page by clicking on a crafted link. | 6.1 |
| 2022-05-02 | CVE-2022-26326 | Open Redirect vulnerability in Microfocus Netiq Access Manager Potential open redirection vulnerability when URL is crafted in specific format in NetIQ Access Manager prior to 5.0.2 | 6.1 |
| 2022-04-27 | CVE-2022-24887 | Open Redirect vulnerability in Nextcloud Talk Nextcloud Talk is a video and audio conferencing app for Nextcloud, a self-hosted productivity platform. | 6.1 |
| 2022-04-25 | CVE-2021-25111 | Open Redirect vulnerability in English Wordpress Admin Project English Wordpress Admin The English WordPress Admin WordPress plugin before 1.5.2 does not validate the admin_custom_language_return_url before redirecting users o it, leading to an open redirect issue | 6.1 |
| 2022-04-21 | CVE-2020-14118 | Open Redirect vulnerability in MI APP Store An intent redirection vulnerability in the Mi App Store product. | 6.1 |
| 2022-04-20 | CVE-2022-1254 | Open Redirect vulnerability in Mcafee web Gateway A URL redirection vulnerability in Skyhigh SWG in main releases 10.x prior to 10.2.9, 9.x prior to 9.2.20, 8.x prior to 8.2.27, and 7.x prior to 7.8.2.31, and controlled release 11.x prior to 11.1.3 allows a remote attacker to redirect a user to a malicious website controlled by the attacker. | 6.1 |
| 2022-04-19 | CVE-2022-24858 | Open Redirect vulnerability in Nextauth.Js Next-Auth next-auth v3 users before version 3.29.2 are impacted. | 6.1 |