Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-04 | CVE-2021-31252 | Open Redirect vulnerability in Chiyu-Tech products An open redirect vulnerability exists in BF-630, BF-450M, BF-430, BF-431, BF631-W, BF830-W, Webpass, and SEMAC devices from CHIYU Technology that can be exploited by sending a link that has a specially crafted URL to convince the user to click on it. | 6.1 |
| 2021-06-04 | CVE-2021-1525 | Open Redirect vulnerability in Cisco Webex Meetings Server A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to redirect users to a malicious file. | 6.1 |
| 2021-05-27 | CVE-2021-32645 | Open Redirect vulnerability in Tenancy Multi-Tenant Tenancy multi-tenant is an open source multi-domain controller for the Laravel web framework. | 6.1 |
| 2021-05-24 | CVE-2021-23387 | Open Redirect vulnerability in Trailing-Slash Project Trailing-Slash 1.0.0/2.0.0 The package trailing-slash before 2.0.1 are vulnerable to Open Redirect via the use of trailing double slashes in the URL when accessing the vulnerable endpoint (such as https://example.com//attacker.example/). | 6.1 |
| 2021-05-22 | CVE-2021-1358 | Open Redirect vulnerability in Cisco Finesse A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to redirect a user to an undesired web page. | 6.1 |
| 2021-05-19 | CVE-2021-29622 | Open Redirect vulnerability in Prometheus Prometheus is an open-source monitoring system and time series database. | 6.1 |
| 2021-05-19 | CVE-2020-36365 | Open Redirect vulnerability in Smartstore Smartstorenet Smartstore (aka SmartStoreNET) before 4.1.0 allows CommonController.ClearCache, ClearDatabaseCache, RestartApplication, and ScheduleTaskController.Edit open redirect. | 6.1 |
| 2021-05-17 | CVE-2021-23384 | Open Redirect vulnerability in Koa-Remove-Trailing-Slashes Project Koa-Remove-Trailing-Slashes 1.0.0/2.0.0/2.0.1 The package koa-remove-trailing-slashes before 2.0.2 are vulnerable to Open Redirect via the use of trailing double slashes in the URL when accessing the vulnerable endpoint (such as https://example.com//attacker.example/). | 5.4 |
| 2021-05-17 | CVE-2021-32618 | Open Redirect vulnerability in Flask-Security Project Flask-Security The Python "Flask-Security-Too" package is used for adding security features to your Flask application. | 6.1 |
| 2021-05-17 | CVE-2021-24288 | Open Redirect vulnerability in Acymailing When subscribing using AcyMailing, the 'redirect' parameter isn't properly sanitized. | 6.1 |