Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-19 | CVE-2022-1019 | Open Redirect vulnerability in Automatedlogic Webctrl Server 7.0 Automated Logic's WebCtrl Server Version 6.1 'Help' index pages are vulnerable to open redirection. | 6.1 |
| 2022-04-19 | CVE-2022-0645 | Open Redirect vulnerability in Posthog Open redirect vulnerability via endpoint authorize_and_redirect/?redirect= in GitHub repository posthog/posthog prior to 1.34.1. | 6.1 |
| 2022-04-14 | CVE-2020-25154 | Open Redirect vulnerability in Bbraun Datamodule Compactplus and Spacecom An open redirect vulnerability in the administrative interface of the B. | 6.1 |
| 2022-04-13 | CVE-2022-27256 | Open Redirect vulnerability in Hubzilla A PHP Local File inclusion vulnerability in the Redbasic theme for Hubzilla before version 7.2 allows remote attackers to include arbitrary php files via the schema parameter. | 6.1 |
| 2022-04-12 | CVE-2022-28215 | Open Redirect vulnerability in SAP Netweaver Abap 740/750/787 SAP NetWeaver ABAP Server and ABAP Platform - versions 740, 750, 787, allows an unauthenticated attacker to redirect users to a malicious site due to insufficient URL validation. | 4.7 |
| 2022-04-06 | CVE-2022-27109 | Open Redirect vulnerability in Orangehrm 4.10 OrangeHRM 4.10 suffers from a Referer header injection redirect vulnerability. | 5.4 |
| 2022-04-06 | CVE-2022-27110 | Open Redirect vulnerability in Orangehrm 4.10 OrangeHRM 4.10 is vulnerable to a Host header injection redirect via viewPersonalDetails endpoint. | 5.4 |
| 2022-04-05 | CVE-2022-27463 | Open Redirect vulnerability in Wwbn Avideo Open redirect vulnerability in objects/login.json.php in WWBN AVideo through 11.6, allows attackers to arbitrarily redirect users from a crafted url to the login page. | 6.1 |
| 2022-04-04 | CVE-2022-1233 | Open Redirect vulnerability in Uri.Js Project Uri.Js URL Confusion When Scheme Not Supplied in GitHub repository medialize/uri.js prior to 1.19.11. | 6.1 |
| 2022-03-31 | CVE-2022-24794 | Open Redirect vulnerability in Auth0 Express Openid Connect Express OpenID Connect is an Express JS middleware implementing sign on for Express web apps using OpenID Connect. | 6.1 |