Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-28 | CVE-2021-34254 | Open Redirect vulnerability in Umbraco CMS Umbraco CMS before 7.15.7 is vulnerable to Open Redirection due to insufficient url sanitization on booting.aspx. | 6.1 |
| 2021-06-24 | CVE-2021-25655 | Open Redirect vulnerability in Avaya Aura Experience Portal 7.1/8.0.0 A vulnerability in the system Service Menu component of Avaya Aura Experience Portal may allow URL Redirection to any untrusted site through a crafted attack. | 6.1 |
| 2021-06-23 | CVE-2020-18660 | Open Redirect vulnerability in Get-Simple Getsimplecms GetSimpleCMS <=3.3.15 has an open redirect in admin/changedata.php via the redirect function to the url parameter. | 6.1 |
| 2021-06-22 | CVE-2010-4266 | Open Redirect vulnerability in Vanillaforums Vanilla Forums It was found in vanilla forums before 2.0.10 a potential linkbait vulnerability in dispatcher. | 6.1 |
| 2021-06-22 | CVE-2021-35206 | Open Redirect vulnerability in Gitpod Gitpod before 0.6.0 allows unvalidated redirects. | 6.1 |
| 2021-06-18 | CVE-2021-32956 | Open Redirect vulnerability in Advantech Webaccess/Scada Advantech WebAccess/SCADA Versions 9.0.1 and prior is vulnerable to redirection, which may allow an attacker to send a maliciously crafted URL that could result in redirecting a user to a malicious webpage. | 6.1 |
| 2021-06-14 | CVE-2021-24358 | Open Redirect vulnerability in Posimyth the Plus Addons for Elementor The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.10 did not validate a redirect parameter on a specifically crafted URL before redirecting the user to it, leading to an Open Redirect issue. | 6.1 |
| 2021-06-11 | CVE-2021-22903 | Open Redirect vulnerability in Rubyonrails Rails The actionpack ruby gem before 6.1.3.2 suffers from a possible open redirect vulnerability. | 6.1 |
| 2021-06-11 | CVE-2021-23393 | Open Redirect vulnerability in Flask Unchained Project Flask Unchained This affects the package Flask-Unchained before 0.9.0. | 5.4 |
| 2021-06-07 | CVE-2020-18268 | Open Redirect vulnerability in Zblogcn Z-Blogphp Open Redirect in Z-BlogPHP v1.5.2 and earlier allows remote attackers to obtain sensitive information via the "redirect" parameter in the component "zb_system/cmd.php." | 6.1 |