Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-06-18 | CVE-2021-32956 | Open Redirect vulnerability in Advantech Webaccess/Scada Advantech WebAccess/SCADA Versions 9.0.1 and prior is vulnerable to redirection, which may allow an attacker to send a maliciously crafted URL that could result in redirecting a user to a malicious webpage. | 5.8 |
2021-06-14 | CVE-2021-24358 | Open Redirect vulnerability in Posimyth the Plus Addons for Elementor The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.10 did not validate a redirect parameter on a specifically crafted URL before redirecting the user to it, leading to an Open Redirect issue. | 5.8 |
2021-06-11 | CVE-2021-22903 | Open Redirect vulnerability in Rubyonrails Rails The actionpack ruby gem before 6.1.3.2 suffers from a possible open redirect vulnerability. | 5.8 |
2021-06-11 | CVE-2021-23393 | Open Redirect vulnerability in Flask Unchained Project Flask Unchained This affects the package Flask-Unchained before 0.9.0. | 5.8 |
2021-06-07 | CVE-2020-18268 | Open Redirect vulnerability in Zblogcn Z-Blogphp Open Redirect in Z-BlogPHP v1.5.2 and earlier allows remote attackers to obtain sensitive information via the "redirect" parameter in the component "zb_system/cmd.php." | 5.8 |
2021-06-04 | CVE-2021-31252 | Open Redirect vulnerability in Chiyu-Tech products An open redirect vulnerability exists in BF-630, BF-450M, BF-430, BF-431, BF631-W, BF830-W, Webpass, and SEMAC devices from CHIYU Technology that can be exploited by sending a link that has a specially crafted URL to convince the user to click on it. | 5.8 |
2021-06-04 | CVE-2021-1525 | Open Redirect vulnerability in Cisco Webex Meetings Server A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to redirect users to a malicious file. | 6.1 |
2021-05-27 | CVE-2021-32645 | Open Redirect vulnerability in Tenancy Multi-Tenant Tenancy multi-tenant is an open source multi-domain controller for the Laravel web framework. | 5.8 |
2021-05-24 | CVE-2021-23387 | Open Redirect vulnerability in Trailing-Slash Project Trailing-Slash The package trailing-slash before 2.0.1 are vulnerable to Open Redirect via the use of trailing double slashes in the URL when accessing the vulnerable endpoint (such as https://example.com//attacker.example/). | 5.8 |
2021-05-22 | CVE-2021-1358 | Open Redirect vulnerability in Cisco Finesse A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to redirect a user to an undesired web page. | 6.1 |