Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-02 | CVE-2021-21291 | Open Redirect vulnerability in Oauth2 Proxy Project Oauth2 Proxy OAuth2 Proxy is an open-source reverse proxy and static file server that provides authentication using Providers (Google, GitHub, and others) to validate accounts by email, domain or group. | 6.1 |
| 2021-01-29 | CVE-2020-29537 | Open Redirect vulnerability in RSA Archer Archer before 6.8 P2 (6.8.0.2) is affected by an open redirect vulnerability. | 5.4 |
| 2021-01-28 | CVE-2020-1723 | Open Redirect vulnerability in multiple products A flaw was found in Keycloak Gatekeeper (Louketo). | 6.1 |
| 2021-01-26 | CVE-2021-22873 | Open Redirect vulnerability in Revive-Adserver Revive Adserver Revive Adserver before 5.1.0 is vulnerable to open redirects via the `dest`, `oadest`, and/or `ct0` parameters of the lg.php and ck.php delivery scripts. | 6.1 |
| 2021-01-20 | CVE-2021-1218 | Open Redirect vulnerability in Cisco Smart Software Manager On-Prem 5.0 A vulnerability in the web management interface of Cisco Smart Software Manager satellite could allow an authenticated, remote attacker to redirect a user to an undesired web page. | 5.4 |
| 2021-01-13 | CVE-2021-1310 | Open Redirect vulnerability in Cisco Webex Meetings A vulnerability in the web-based management interface of Cisco Webex Meetings could allow an unauthenticated, remote attacker to redirect a user to an untrusted web page, bypassing the warning mechanism that should prompt the user before the redirection. | 4.7 |
| 2021-01-07 | CVE-2020-26979 | Open Redirect vulnerability in Mozilla Firefox When a user typed a URL in the address bar or the search bar and quickly hit the enter key, a website could sometimes capture that event and then redirect the user before navigation occurred to the desired, entered address. | 6.1 |
| 2021-01-04 | CVE-2020-29498 | Open Redirect vulnerability in Dell Wyse Management Suite Dell Wyse Management Suite versions prior to 3.1 contain an open redirect vulnerability. | 6.1 |
| 2020-12-31 | CVE-2020-25846 | Open Redirect vulnerability in Panorama Project Nhiservisignadapter 1.0.20.0218 The digest generation function of NHIServiSignAdapter has not been verified for source file path, which leads to the SMB request being redirected to a malicious host, resulting in the leakage of user's credential. | 7.4 |
| 2020-12-31 | CVE-2020-25845 | Open Redirect vulnerability in Panorama Project Nhiservisignadapter 1.0.20.0218 Multiple functions of NHIServiSignAdapter failed to verify the users’ file path, which leads to the SMB request being redirected to a malicious host, resulting in the leakage of user's credential. | 7.4 |