Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-10-01 | CVE-2018-17870 | Open Redirect vulnerability in Btiteam Xbtit 2.54 An issue was discovered in BTITeam XBTIT 2.5.4. | 6.1 |
| 2018-09-28 | CVE-2018-1251 | Open Redirect vulnerability in Dell EMC Unity Firmware and EMC Unityvsa Dell EMC Unity and UnityVSA versions prior to 4.3.1.1525703027 contains a URL Redirection vulnerability. | 8.1 |
| 2018-09-28 | CVE-2018-1704 | Open Redirect vulnerability in IBM Platform Symphony and Spectrum Symphony IBM Platform Symphony 7.1 Fix Pack 1 and 7.1.1 and IBM Spectrum Symphony 7.1.2 and 7.2.0.2 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. | 5.4 |
| 2018-09-27 | CVE-2018-1736 | Open Redirect vulnerability in IBM Websphere Portal IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. | 6.1 |
| 2018-09-18 | CVE-2018-16954 | Open Redirect vulnerability in Oracle Webcenter Interaction 10.3.3 An issue was discovered in Oracle WebCenter Interaction Portal 10.3.3. | 6.1 |
| 2018-09-16 | CVE-2018-17074 | Open Redirect vulnerability in Feed Statistics Project Feed Statistics The Feed Statistics plugin before 4.0 for WordPress has an Open Redirect via the feed-stats-url parameter. | 6.1 |
| 2018-09-13 | CVE-2018-5548 | Open Redirect vulnerability in F5 Big-Ip Access Policy Manager 11.6.1/11.6.2/11.6.3 On BIG-IP APM 11.6.0-11.6.3, an insecure AES ECB mode is used for orig_uri parameter in an undisclosed /vdesk link of APM virtual server configured with an access profile, allowing a malicious user to build a redirect URI value using different blocks of cipher texts. | 6.1 |
| 2018-09-09 | CVE-2018-16761 | Open Redirect vulnerability in Eventum Project Eventum Eventum before 3.4.0 has an open redirect vulnerability. | 6.1 |
| 2018-09-07 | CVE-2018-14398 | Open Redirect vulnerability in Cremecrm 1.6.12 An issue was discovered in Creme CRM 1.6.12. | 6.1 |
| 2018-09-06 | CVE-2018-14366 | Open Redirect vulnerability in multiple products download.cgi in Pulse Secure Pulse Connect Secure 8.1RX before 8.1R13 and 8.3RX before 8.3R4 and Pulse Policy Secure through 5.2RX before 5.2R10 and 5.4RX before 5.4R4 have an Open Redirect Vulnerability. | 6.1 |