Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')

DATE CVE VULNERABILITY TITLE RISK
2022-03-30 CVE-2022-23798 Open Redirect vulnerability in Joomla Joomla!
An issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0.
network
low complexity
joomla CWE-601
6.1
6.1
2022-03-30 CVE-2022-26950 Open Redirect vulnerability in RSA Archer
Archer 6.x through 6.9 P2 (6.9.0.2) is affected by an open redirect vulnerability.
network
low complexity
rsa CWE-601
6.1
6.1
2022-03-28 CVE-2005-10001 Open Redirect vulnerability in Broadcom Symantec Siteminder 4.5.0/4.5.1
A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical.
network
low complexity
broadcom CWE-601
6.1
6.1
2022-03-28 CVE-2022-0283 Open Redirect vulnerability in Gitlab
An issue has been discovered affecting GitLab versions prior to 13.5.
network
low complexity
gitlab CWE-601
6.1
6.1
2022-03-24 CVE-2022-24776 Open Redirect vulnerability in Flask-Appbuilder Project Flask-Appbuilder
Flask-AppBuilder is an application development framework, built on top of the Flask web framework.
network
low complexity
flask-appbuilder-project CWE-601
6.1
6.1
2022-03-24 CVE-2022-1058 Open Redirect vulnerability in Gitea
Open Redirect on login in GitHub repository go-gitea/gitea prior to 1.16.5.
network
low complexity
gitea CWE-601
6.1
6.1
2022-03-21 CVE-2022-27090 Open Redirect vulnerability in Chshcms Cscms 4.2
Cscms Music Portal System v4.2 was discovered to contain a redirection vulnerability via the backurl parameter.
network
low complexity
chshcms CWE-601
5.4
5.4
2022-03-14 CVE-2022-0165 Open Redirect vulnerability in King-Theme Kingcomposer 2.7.6/2.9.4
The Page Builder KingComposer WordPress plugin through 2.9.6 does not validate the id parameter before redirecting the user to it via the kc_get_thumbn AJAX action available to both unauthenticated and authenticated users
network
low complexity
king-theme CWE-601
6.1
6.1
2022-03-08 CVE-2021-41180 Open Redirect vulnerability in Nextcloud Talk
Nextcloud talk is a self hosting messaging service.
network
low complexity
nextcloud CWE-601
6.1
6.1
2022-03-06 CVE-2022-0697 Open Redirect vulnerability in Archivy Project Archivy
Open Redirect in GitHub repository archivy/archivy prior to 1.7.0.
network
low complexity
archivy-project CWE-601
6.1
6.1