Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-02 | CVE-2018-15180 | Open Redirect vulnerability in Qasymphony Qtest Manager 9.0.0 qTest Portal in QASymphony qTest Manager 9.0.0 has an Open Redirect via the /portal/loginform redirect parameter. | 6.1 |
| 2019-04-01 | CVE-2018-8913 | Open Redirect vulnerability in Synology web Station Missing custom error page vulnerability in Synology Web Station before 2.1.3-0139 allows remote attackers to conduct phishing attacks via a crafted URL. | 6.1 |
| 2019-03-29 | CVE-2017-18109 | Open Redirect vulnerability in Atlassian Crowd The login resource of CrowdId in Atlassian Crowd before version 3.0.2 and from version 3.1.0 before version 3.1.1 allows remote attackers to redirect users to a different website which they may use as part of performing a phishing attack via an open redirect. | 6.1 |
| 2019-03-28 | CVE-2019-10255 | Open Redirect vulnerability in Jupyter Jupyterhub and Notebook An Open Redirect vulnerability for all browsers in Jupyter Notebook before 5.7.7 and some browsers (Chrome, Firefox) in JupyterHub before 0.9.5 allows crafted links to the login page, which will redirect to a malicious site after successful login. | 6.1 |
| 2019-03-27 | CVE-2019-3877 | Open Redirect vulnerability in multiple products A vulnerability was found in mod_auth_mellon before v0.14.2. | 6.1 |
| 2019-03-26 | CVE-2019-3850 | Open Redirect vulnerability in Moodle A vulnerability was found in moodle before versions 3.6.3, 3.5.5, 3.4.8 and 3.1.17. | 6.1 |
| 2019-03-22 | CVE-2019-4035 | Open Redirect vulnerability in IBM Content Navigator 3.0.0 IBM Content Navigator 3.0CD could allow attackers to direct web traffic to a malicious site. | 5.4 |
| 2019-03-22 | CVE-2019-9915 | Open Redirect vulnerability in Get-Simple. Getsimplecms 3.3.13 GetSimpleCMS 3.3.13 has an Open Redirect via the admin/index.php redirect parameter. | 6.1 |
| 2019-03-21 | CVE-2019-9837 | Open Redirect vulnerability in Openid Connect Doorkeeper::OpenidConnect (aka the OpenID Connect extension for Doorkeeper) 1.4.x and 1.5.x before 1.5.4 has an open redirect via the redirect_uri field in an OAuth authorization request (that results in an error response) with the 'openid' scope and a prompt=none value. | 6.1 |
| 2019-03-21 | CVE-2019-7416 | Open Redirect vulnerability in Opentext Documentum Webtop 5.3 XSS and/or a Client Side URL Redirect exists in OpenText Documentum Webtop 5.3 SP2. | 6.1 |