Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-19 | CVE-2020-4653 | Open Redirect vulnerability in IBM Planning Analytics 2.0 IBM Planning Analytics 2.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. | 6.1 |
| 2020-07-30 | CVE-2020-15129 | Open Redirect vulnerability in Traefik In Traefik before versions 1.7.26, 2.2.8, and 2.3.0-rc3, there exists a potential open redirect vulnerability in Traefik's handling of the "X-Forwarded-Prefix" header. | 4.7 |
| 2020-07-23 | CVE-2020-7520 | Open Redirect vulnerability in Schneider-Electric Software Update Utility A CWE-601: URL Redirection to Untrusted Site ('Open Redirect') vulnerability exists in Schneider Electric Software Update (SESU), V2.4.0 and prior, which could cause execution of malicious code on the victim's machine. | 4.7 |
| 2020-07-22 | CVE-2020-8559 | Open Redirect vulnerability in Kubernetes The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise. | 6.8 |
| 2020-07-14 | CVE-2019-12783 | Open Redirect vulnerability in Verint Impact 360 15.1 An issue was discovered in Verint Impact 360 15.1. | 6.1 |
| 2020-07-13 | CVE-2019-20901 | Open Redirect vulnerability in Atlassian Jira The login.jsp resource in Jira before version 8.5.2, and from version 8.6.0 before version 8.6.1 allows remote attackers to redirect users to a different website which they may use as part of performing a phishing attack via an open redirect in the os_destination parameter. | 6.1 |
| 2020-07-10 | CVE-2020-5607 | Open Redirect vulnerability in Ss-Proj Shirasagi Open redirect vulnerability in SHIRASAGI v1.13.1 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. | 6.1 |
| 2020-07-07 | CVE-2020-11882 | Open Redirect vulnerability in Telefonica O2 Business 1.2.0 The O2 Business application 1.2.0 for Android exposes the canvasm.myo2.SplashActivity activity to other applications. | 6.1 |
| 2020-06-29 | CVE-2020-4037 | Open Redirect vulnerability in Oauth2 Proxy Project Oauth2 Proxy 5.1.1 In OAuth2 Proxy from version 5.1.1 and less than version 6.0.0, users can provide a redirect address for the proxy to send the authenticated user to at the end of the authentication flow. | 5.4 |
| 2020-06-19 | CVE-2017-18897 | Open Redirect vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5, when used as an OAuth 2.0 service provider. | 6.1 |