Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-23 | CVE-2021-21377 | Open Redirect vulnerability in Openmicroscopy Omero.Web 5.6.3 OMERO.web is open source Django-based software for managing microscopy imaging. | 5.4 |
| 2021-03-23 | CVE-2021-21338 | Open Redirect vulnerability in Typo3 TYPO3 is an open source PHP based web content management system. | 6.1 |
| 2021-03-19 | CVE-2019-14831 | Open Redirect vulnerability in Moodle A vulnerability was found in Moodle 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions, where forum subscribe link contained an open redirect if forced subscription mode was enabled. | 6.1 |
| 2021-03-19 | CVE-2019-14830 | Open Redirect vulnerability in Moodle A vulnerability was found in Moodle 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions, where the mobile launch endpoint contained an open redirect in some circumstances, which could result in a user's mobile access token being exposed. | 6.1 |
| 2021-03-10 | CVE-2021-21491 | Open Redirect vulnerability in SAP Netweaver Application Server Java SAP Netweaver Application Server Java (Applications based on WebDynpro Java) versions 7.00, 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allow an attacker to redirect users to a malicious site due to Reverse Tabnabbing vulnerabilities. | 6.1 |
| 2021-03-09 | CVE-2020-28150 | Open Redirect vulnerability in Inetsoftware I-Net Clear Reports 20.10.136 I-Net Software Clear Reports 20.10.136 web application accepts a user-controlled input that specifies a link to an external site, and uses the user supplied data in a Redirect. | 6.1 |
| 2021-03-08 | CVE-2021-21337 | Open Redirect vulnerability in Zope Products.Pluggableauthservice Products.PluggableAuthService is a pluggable Zope authentication and authorization framework. | 6.1 |
| 2021-03-08 | CVE-2021-21354 | Open Redirect vulnerability in Mozilla Pollbot Pollbot is open source software which "frees its human masters from the toilsome task of polling for the state of things during the Firefox release process." In Pollbot before version 1.4.4 there is an open redirection vulnerability in the path of "https://pollbot.services.mozilla.com/". | 6.1 |
| 2021-02-26 | CVE-2021-21273 | Open Redirect vulnerability in multiple products Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). | 6.1 |
| 2021-02-26 | CVE-2021-21330 | Open Redirect vulnerability in multiple products aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. | 6.1 |