Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-09-23 | CVE-2017-14725 | Open Redirect vulnerability in Wordpress Before version 4.8.2, WordPress was susceptible to an open redirect attack in wp-admin/edit-tag-form.php and wp-admin/user-edit.php. | 5.4 |
| 2017-09-20 | CVE-2015-5608 | Open Redirect vulnerability in Joomla Joomla! Open redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1. | 6.1 |
| 2017-09-19 | CVE-2015-3880 | Open Redirect vulnerability in PHPbb Open redirect vulnerability in phpBB before 3.0.14 and 3.1.x before 3.1.4 allows remote attackers to redirect users of Google Chrome to arbitrary web sites and conduct phishing attacks via unspecified vectors. | 6.1 |
| 2017-09-14 | CVE-2017-1002150 | Open Redirect vulnerability in Fedoraproject Python-Fedora 0.8.0 python-fedora 0.8.0 and lower is vulnerable to an open redirect resulting in loss of CSRF protection | 6.1 |
| 2017-09-13 | CVE-2015-2750 | Open Redirect vulnerability in multiple products Open redirect vulnerability in URL-related API functions in Drupal 6.x before 6.35 and 7.x before 7.35 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via vectors involving the "//" initial sequence. | 6.1 |
| 2017-09-13 | CVE-2015-2749 | Open Redirect vulnerability in multiple products Open redirect vulnerability in Drupal 6.x before 6.35 and 7.x before 7.35 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the destination parameter. | 6.1 |
| 2017-09-11 | CVE-2015-5054 | Open Redirect vulnerability in Ellucian Banner Student Open redirect vulnerability in Ellucian (formerly SunGard) Banner Student 8.5.1.2 through 8.7 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in an unspecified parameter. | 6.1 |
| 2017-08-31 | CVE-2017-1450 | Open Redirect vulnerability in IBM Emptoris Sourcing IBM Emptoris Sourcing 9.5 - 10.1.3 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. | 6.1 |
| 2017-08-31 | CVE-2017-1449 | Open Redirect vulnerability in IBM Emptoris Sourcing IBM Emptoris Sourcing 9.5 - 10.1.3 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. | 5.4 |
| 2017-08-30 | CVE-2017-14038 | Open Redirect vulnerability in Crushftp CrushFTP before 7.8.0 and 8.x before 8.2.0 has a redirect vulnerability. | 6.1 |