Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')

DATE CVE VULNERABILITY TITLE RISK
2021-08-25 CVE-2021-39112 Open Redirect vulnerability in Atlassian products
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to redirect users to a malicious URL via a reverse tabnapping vulnerability in the Project Shortcuts feature.
network
low complexity
atlassian CWE-601
4.8
2021-08-24 CVE-2021-30888 Open Redirect vulnerability in Apple products
An information leakage issue was addressed.
network
low complexity
apple CWE-601
7.4
2021-08-13 CVE-2021-37352 Open Redirect vulnerability in Nagios XI
An open redirect vulnerability exists in Nagios XI before version 5.8.5 that could lead to spoofing.
network
low complexity
nagios CWE-601
6.1
2021-08-12 CVE-2021-37699 Open Redirect vulnerability in Vercel Next.Js
Next.js is an open source website development framework to be used with the React library.
network
low complexity
vercel CWE-601
6.1
2021-08-11 CVE-2021-22098 Open Redirect vulnerability in Cloudfoundry User Account and Authentication
UAA server versions prior to 75.4.0 are vulnerable to an open redirect vulnerability.
network
low complexity
cloudfoundry CWE-601
6.1
2021-08-03 CVE-2021-33331 Open Redirect vulnerability in Liferay Digital Experience Platform and Liferay Portal
Open redirect vulnerability in the Notifications module in Liferay Portal 7.0.0 through 7.3.1, and Liferay DXP 7.0 before fix pack 94, 7.1 before fix pack 19 and 7.2 before fix pack 8, allows remote attackers to redirect users to arbitrary external URLs via the 'redirect' parameter.
network
low complexity
liferay CWE-601
6.1
2021-08-03 CVE-2021-21578 Open Redirect vulnerability in Dell EMC Idrac9 Firmware
Dell EMC iDRAC9 versions prior to 4.40.40.00 contain an open redirect vulnerability.
network
low complexity
dell CWE-601
6.1
2021-08-03 CVE-2021-21579 Open Redirect vulnerability in Dell EMC Idrac9 Firmware
Dell EMC iDRAC9 versions prior to 4.40.40.00 contain an open redirect vulnerability.
network
low complexity
dell CWE-601
6.1
2021-07-30 CVE-2021-37746 Open Redirect vulnerability in multiple products
textview_uri_security_check in textview.c in Claws Mail before 3.18.0, and Sylpheed through 3.7.0, does not have sufficient link checks before accepting a click.
6.1
2021-07-30 CVE-2021-20789 Open Redirect vulnerability in Groupsession products
Open redirect vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to ver5.1.0, and GroupSession ZION from ver3.0.3 to the version prior to ver5.1.0) allows a remote attacker to redirect a user to an arbitrary web site and conduct a phishing attack via a specially crafted URL.
network
low complexity
groupsession CWE-601
6.1