Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-03 | CVE-2023-50345 | Open Redirect vulnerability in Hcltech Dryice Myxalytics 5.9/6.0/6.1 HCL DRYiCE MyXalytics is impacted by an Open Redirect vulnerability which could allow an attacker to redirect users to malicious sites, potentially leading to phishing attacks or other security threats. | 6.1 |
| 2024-01-02 | CVE-2023-26159 | Open Redirect vulnerability in Follow-Redirects Follow Redirects Versions of the package follow-redirects before 1.15.4 are vulnerable to Improper Input Validation due to the improper handling of URLs by the url.parse() function. | 6.1 |
| 2023-12-30 | CVE-2023-52263 | Open Redirect vulnerability in Brave Browser Brave Browser before 1.59.40 does not properly restrict the schema for WebUI factory and redirect. | 6.1 |
| 2023-12-29 | CVE-2023-31229 | Open Redirect vulnerability in Wpdirectorykit WP Directory KIT URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WP Directory Kit.This issue affects WP Directory Kit: from n/a through 1.1.9. | 6.1 |
| 2023-12-26 | CVE-2023-48003 | Open Redirect vulnerability in Aspnetzero Asp.Net Zero An open redirect through HTML injection in user messages in Asp.Net Zero before 12.3.0 allows remote attackers to redirect targeted victims to any URL via the '<meta http-equiv="refresh"' in the WebSocket messages. | 6.1 |
| 2023-12-26 | CVE-2023-49438 | Open Redirect vulnerability in Flask-Security-Too Project Flask-Security-Too An open redirect vulnerability in the python package Flask-Security-Too <=5.3.2 allows attackers to redirect unsuspecting users to malicious sites via a crafted URL by abusing the ?next parameter on the /login and /register routes. | 6.1 |
| 2023-12-26 | CVE-2023-50297 | Open Redirect vulnerability in Alfasado Powercms Open redirect vulnerability in PowerCMS (6 Series, 5 Series, and 4 Series) allows a remote unauthenticated attacker to redirect users to arbitrary web sites via a specially crafted URL. | 6.1 |
| 2023-12-20 | CVE-2023-50704 | Open Redirect vulnerability in Efacec UC 500E Firmware 10.1.0 An attacker could construct a URL within the application that causes a redirection to an arbitrary external domain and could be leveraged to facilitate phishing attacks against application users. | 6.1 |
| 2023-12-19 | CVE-2023-37982 | Open Redirect vulnerability in Crmperks Integration for Salesforce and Contact Form 7, Wpforms, Elementor, Ninja Forms 1.3.3 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for Salesforce and Contact Form 7, WPForms, Elementor, Ninja Forms.This issue affects Integration for Salesforce and Contact Form 7, WPForms, Elementor, Ninja Forms: from n/a through 1.3.3. | 6.1 |
| 2023-12-19 | CVE-2023-38481 | Open Redirect vulnerability in Crmperks Integration for Woocommerce and Zoho Crm, Books, Invoice, Inventory, Bigin URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for WooCommerce and Zoho CRM, Books, Invoice, Inventory, Bigin.This issue affects Integration for WooCommerce and Zoho CRM, Books, Invoice, Inventory, Bigin: from n/a before 1.3.7. | 6.1 |