Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-15 | CVE-2024-6289 | Open Redirect vulnerability in Wpserveur WPS Hide Login The WPS Hide Login WordPress plugin before 1.9.16.4 does not prevent redirects to the login page via the auth_redirect WordPress function, allowing an unauthenticated visitor to access the hidden login page. | 6.1 |
| 2024-07-09 | CVE-2024-37830 | Open Redirect vulnerability in Getoutline Outline An issue in Outline <= v0.76.1 allows attackers to redirect a victim user to a malicious site via intercepting and changing the state cookie. | 6.1 |
| 2024-06-27 | CVE-2024-4704 | Open Redirect vulnerability in Rocklobster Contact Form 7 The Contact Form 7 WordPress plugin before 5.9.5 has an open redirect that allows an attacker to utilize a false URL and redirect to the URL of their choosing. | 6.1 |
| 2024-06-26 | CVE-2024-24764 | Open Redirect vulnerability in Octobercms October October is a self-hosted CMS platform based on the Laravel PHP Framework. | 4.8 |
| 2024-06-20 | CVE-2024-3597 | Open Redirect vulnerability in Myrecorp Export WP Page to Static Html/Css 2.1.9/2.2.2 The Export WP Page to Static HTML/CSS plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 2.2.2. | 6.1 |
| 2024-06-14 | CVE-2024-23442 | Open Redirect vulnerability in Elastic Kibana An open redirect issue was discovered in Kibana that could lead to a user being redirected to an arbitrary website if they use a maliciously crafted Kibana URL. | 6.1 |
| 2024-06-13 | CVE-2024-3032 | Open Redirect vulnerability in Themify Builder Themify Builder WordPress plugin before 7.5.8 does not validate a parameter before redirecting the user to its value, leading to an Open Redirect issue | 6.1 |
| 2024-06-10 | CVE-2024-36419 | Open Redirect vulnerability in Salesagility Suitecrm SuiteCRM is an open-source Customer Relationship Management (CRM) software application. | 6.1 |
| 2024-04-05 | CVE-2024-31213 | Open Redirect vulnerability in Instantcms InstantCMS is a free and open source content management system. | 5.4 |
| 2024-03-28 | CVE-2024-31135 | Open Redirect vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2024.03 open redirect was possible on the login page | 6.1 |