Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-02 | CVE-2024-21794 | Open Redirect vulnerability in Rapidscada Rapid Scada In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an attacker can redirect users to malicious pages through the login page. | 5.4 |
| 2024-01-29 | CVE-2023-6389 | Open Redirect vulnerability in Abhinavsingh Wordpress Toolbar 2.2.6 The WordPress Toolbar WordPress plugin through 2.2.6 redirects to any URL via the "wptbto" parameter. | 6.1 |
| 2024-01-26 | CVE-2023-6291 | Open Redirect vulnerability in Redhat products A flaw was found in the redirect_uri validation logic in Keycloak. | 7.1 |
| 2024-01-24 | CVE-2024-22308 | Open Redirect vulnerability in Simple-Membership-Plugin Simple Membership URL Redirection to Untrusted Site ('Open Redirect') vulnerability in smp7, wp.Insider Simple Membership.This issue affects Simple Membership: from n/a through 4.4.1. | 6.1 |
| 2024-01-24 | CVE-2024-0854 | Open Redirect vulnerability in Synology Diskstation Manager URL redirection to untrusted site ('Open Redirect') vulnerability in file access component in Synology DiskStation Manager (DSM) before 7.2.1-69057-2 allows remote authenticated users to conduct phishing attacks via unspecified vectors. | 5.4 |
| 2024-01-22 | CVE-2024-0781 | Open Redirect vulnerability in Martmbithi Internet Banking System 1.0 A vulnerability, which was classified as problematic, was found in CodeAstro Internet Banking System 1.0. | 6.1 |
| 2024-01-22 | CVE-2024-22113 | Open Redirect vulnerability in Anglers-Net CGI An-Anlyzer 20190624/20231231 Open redirect vulnerability in Access analysis CGI An-Analyzer released in 2023 December 31 and earlier allows a remote unauthenticated attacker to redirect users to arbitrary websites and conduct phishing attacks via a specially crafted URL. | 6.1 |
| 2024-01-19 | CVE-2023-50963 | Open Redirect vulnerability in IBM Storage Defender Data Protect IBM Storage Defender - Data Protect 1.0.0 through 1.4.1 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. | 5.4 |
| 2024-01-18 | CVE-2024-22400 | Open Redirect vulnerability in Nextcloud SSO & Saml Authentication Nextcloud User Saml is an app for authenticating Nextcloud users using SAML. | 6.1 |
| 2024-01-16 | CVE-2023-3771 | Open Redirect vulnerability in T1 Project T1 The T1 WordPress theme through 19.0 is vulnerable to unauthenticated open redirect with which any attacker and redirect users to arbitrary websites. | 6.1 |