Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-22 | CVE-2017-5871 | Open Redirect vulnerability in Odoo 10.0/8.0/9.0 Odoo Version <= 8.0-20160726 and Version 9 is affected by: CWE-601: Open redirection. | 5.4 |
| 2019-05-17 | CVE-2019-6781 | Open Redirect vulnerability in Gitlab An Improper Input Validation issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. | 7.5 |
| 2019-05-17 | CVE-2019-5946 | Open Redirect vulnerability in Cybozu Garoon Open redirect vulnerability in Cybozu Garoon 4.2.4 to 4.10.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the Login Screen. | 6.1 |
| 2019-05-16 | CVE-2019-10117 | Open Redirect vulnerability in Gitlab An Open Redirect issue was discovered in GitLab Community and Enterprise Edition before 11.7.8, 11.8.x before 11.8.4, and 11.9.x before 11.9.2. | 6.1 |
| 2019-05-13 | CVE-2019-8951 | Open Redirect vulnerability in Bosch products An Open Redirect vulnerability located in the webserver affects several Bosch hardware and software products. | 6.1 |
| 2019-05-13 | CVE-2018-12300 | Open Redirect vulnerability in Seagate NAS OS 4.3.15.1 Arbitrary Redirect in echo-server.html in Seagate NAS OS version 4.3.15.1 allows attackers to disclose information in the Referer header via the 'state' URL parameter. | 6.1 |
| 2019-05-06 | CVE-2019-5433 | Open Redirect vulnerability in Revive-Adserver Revive Adserver A user having access to the UI of a Revive Adserver instance could be tricked into clicking on a specifically crafted admin account-switch.php URL that would eventually lead them to another (unsafe) domain, potentially used for stealing credentials or other phishing attacks. | 5.4 |
| 2019-04-30 | CVE-2018-14931 | Open Redirect vulnerability in Polarisft Intellect Core Banking 9.7.1 An issue was discovered in the Core and Portal modules in Polaris FT Intellect Core Banking 9.7.1. | 6.1 |
| 2019-04-30 | CVE-2019-4166 | Open Redirect vulnerability in IBM Storediq IBM StoredIQ 7.6 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. | 6.1 |
| 2019-04-25 | CVE-2019-3788 | Open Redirect vulnerability in Cloudfoundry UAA Release Cloud Foundry UAA Release, versions prior to 71.0, allows clients to be configured with an insecure redirect uri. | 6.1 |