Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-04 | CVE-2023-5375 | Open Redirect vulnerability in Mosparo Open Redirect in GitHub repository mosparo/mosparo prior to 1.0.2. | 6.1 |
| 2023-09-19 | CVE-2023-23957 | Open Redirect vulnerability in Symantec Identity Portal 14.4 An authenticated user can see and modify the value for ‘next’ query parameter in Symantec Identity Portal 14.4 | 5.4 |
| 2023-09-14 | CVE-2023-4965 | Open Redirect vulnerability in PHPipam 1.5.1 A vulnerability was found in phpipam 1.5.1. | 4.8 |
| 2023-09-14 | CVE-2023-40779 | Open Redirect vulnerability in Icewarp Deep Castle G2 13.0.1.2 An issue in IceWarp Mail Server Deep Castle 2 v.13.0.1.2 allows a remote attacker to execute arbitrary code via a crafted request to the URL. | 6.1 |
| 2023-09-11 | CVE-2023-41609 | Open Redirect vulnerability in Couchcms 2.3 An open redirect vulnerability in the sanitize_url() parameter of CouchCMS v2.3 allows attackers to redirect a victim user to an arbitrary web site via a crafted URL. | 6.1 |
| 2023-09-08 | CVE-2023-40306 | Open Redirect vulnerability in SAP S/4Hana SAP S/4HANA Manage Catalog Items and Cross-Catalog searches Fiori apps allow an attacker to redirect users to a malicious site due to insufficient URL validation. | 6.1 |
| 2023-09-06 | CVE-2023-20263 | Open Redirect vulnerability in Cisco Hyperflex HX Data Platform 5.0/5.5 A vulnerability in the web-based management interface of Cisco HyperFlex HX Data Platform could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. This vulnerability is due to improper input validation of the parameters in an HTTP request. | 6.1 |
| 2023-09-05 | CVE-2023-39364 | Open Redirect vulnerability in multiple products Cacti is an open source operational monitoring and fault management framework. | 5.4 |
| 2023-09-05 | CVE-2023-38574 | Open Redirect vulnerability in I-Pro Video Insight Open redirect vulnerability in VI Web Client prior to 7.9.6 allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL. | 6.1 |
| 2023-09-03 | CVE-2023-39371 | Open Redirect vulnerability in Startrinity Softswitch 20230216 StarTrinity Softswitch version 2023-02-16 - Open Redirect (CWE-601) | 6.1 |