Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-03 | CVE-2021-39191 | Open Redirect vulnerability in multiple products mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. | 6.1 |
| 2021-08-30 | CVE-2021-38343 | Open Redirect vulnerability in Kylephillips Nested Pages The Nested Pages WordPress plugin <= 3.1.15 was vulnerable to an Open Redirect via the `page` POST parameter in the `npBulkActions`, `npBulkEdit`, `npListingSort`, and `npCategoryFilter` `admin_post` actions. | 6.1 |
| 2021-08-25 | CVE-2021-39112 | Open Redirect vulnerability in Atlassian products Affected versions of Atlassian Jira Server and Data Center allow remote attackers to redirect users to a malicious URL via a reverse tabnapping vulnerability in the Project Shortcuts feature. | 4.9 |
| 2021-08-24 | CVE-2021-30888 | Open Redirect vulnerability in Apple products An information leakage issue was addressed. | 7.4 |
| 2021-08-13 | CVE-2021-37352 | Open Redirect vulnerability in Nagios XI An open redirect vulnerability exists in Nagios XI before version 5.8.5 that could lead to spoofing. | 5.8 |
| 2021-08-10 | CVE-2021-33707 | Open Redirect vulnerability in SAP Netweaver Knowledge Management SAP NetWeaver Knowledge Management allows remote attackers to redirect users to arbitrary websites and conduct phishing attacks via a URL stored in a component. | 5.8 |
| 2021-08-03 | CVE-2021-33331 | Open Redirect vulnerability in Liferay DXP 7.0 Open redirect vulnerability in the Notifications module in Liferay Portal 7.0.0 through 7.3.1, and Liferay DXP 7.0 before fix pack 94, 7.1 before fix pack 19 and 7.2 before fix pack 8, allows remote attackers to redirect users to arbitrary external URLs via the 'redirect' parameter. | 5.8 |
| 2021-08-03 | CVE-2021-21578 | Open Redirect vulnerability in Dell EMC Idrac9 Firmware Dell EMC iDRAC9 versions prior to 4.40.40.00 contain an open redirect vulnerability. | 5.8 |
| 2021-08-03 | CVE-2021-21579 | Open Redirect vulnerability in Dell EMC Idrac9 Firmware Dell EMC iDRAC9 versions prior to 4.40.40.00 contain an open redirect vulnerability. | 5.8 |
| 2021-08-02 | CVE-2021-32806 | Open Redirect vulnerability in Plone Isurlinportal 1.0.0/1.1.0/1.1.1 Products.isurlinportal is a replacement for isURLInPortal method in Plone. | 5.8 |