Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-17 | CVE-2021-40852 | Open Redirect vulnerability in Tcman GIM 11.0/8.0 TCMAN GIM is affected by an open redirect vulnerability. | 6.1 |
| 2021-12-16 | CVE-2021-43812 | Open Redirect vulnerability in Auth0 Nextjs-Auth0 The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. | 6.1 |
| 2021-12-15 | CVE-2020-18985 | Open Redirect vulnerability in Synacor Zimbra Collaboration Suite 8.8.12 An issue in /domain/service/.ewell-known/caldav of Zimbra Collaboration 8.8.12 allows attackers to redirect users to any arbitrary website of their choosing. | 6.1 |
| 2021-12-10 | CVE-2021-3829 | Open Redirect vulnerability in Openwhyd openwhyd is vulnerable to URL Redirection to Untrusted Site | 6.1 |
| 2021-12-08 | CVE-2021-43532 | Open Redirect vulnerability in Mozilla Firefox The 'Copy Image Link' context menu action would copy the final image URL after redirects. | 6.1 |
| 2021-12-08 | CVE-2021-36191 | Open Redirect vulnerability in Fortinet Fortiweb A url redirection to untrusted site ('open redirect') in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and below allows attacker to use the device as proxy via crafted GET parameters in requests to error handlers | 5.4 |
| 2021-12-08 | CVE-2021-43064 | Open Redirect vulnerability in Fortinet Fortiweb A url redirection to untrusted site ('open redirect') in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below allows attacker to use the device as a proxy and reach external or protected hosts via redirection handlers. | 6.1 |
| 2021-12-03 | CVE-2021-4000 | Open Redirect vulnerability in Showdoc showdoc is vulnerable to URL Redirection to Untrusted Site | 6.1 |
| 2021-12-01 | CVE-2021-3989 | Open Redirect vulnerability in Showdoc showdoc is vulnerable to URL Redirection to Untrusted Site | 6.1 |
| 2021-11-30 | CVE-2021-42564 | Open Redirect vulnerability in Cryptshare Server An open redirect through HTML injection in confidential messages in Cryptshare before 5.1.0 allows remote attackers (with permission to provide confidential messages via Cryptshare) to redirect targeted victims to any URL via the '<meta http-equiv="refresh"' substring in the editor parameter. | 5.4 |