Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
open redirect vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2020-13565
An open redirect vulnerability exists in the return_page redirection functionality of phpGACL 3.3.7, OpenEMR 5.0.2 and OpenEMR development version 6.0.0 (commit babec93f600ff1394f91ccd512bcad85832eb6ce). A specially crafted HTTP request can redirect users to an arbitrary URL. An ...
Open-emr Openemr 5.0.2
Phpgacl Project Phpgacl 3.3.7
NA
CVE-2014-2230
Open redirect vulnerability in the header function in adclick.php in OpenX 2.8.10 and previous versions allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the (1) dest parameter to adclick.php or (2) _maxdest parameter...
Openx Openx 2.8.3
Openx Openx
Openx Openx 2.8.5
Openx Openx 2.8.8
Openx Openx 2.8
Openx Openx 2.8.9
Openx Openx 2.8.6
Openx Openx 2.8.2
Openx Openx 2.8.1
Openx Openx 2.8.4
Openx Openx 2.8.7
6.1
CVSSv3
CVE-2021-21337
Products.PluggableAuthService is a pluggable Zope authentication and authorization framework. In Products.PluggableAuthService before version 2.6.0 there is an open redirect vulnerability. A maliciously crafted link to the login form and login functionality could redirect the bro...
Zope Products.pluggableauthservice
6.1
CVSSv3
CVE-2017-18262
Blackboard Learn (Since at least 17th of October 2017) has allowed Unvalidated Redirects on any signed-in user through its endpoints for handling Shibboleth logins, as demonstrated by a webapps/bb-auth-provider-shibboleth-BBLEARN/execute/shibbolethLogin?returnUrl= URI.
Blackboard Blackboard Learn 9.1
Blackboard Blackboard Learn
7.4
CVSSv3
CVE-2016-3378
Open redirect vulnerability in Microsoft Exchange Server 2013 SP1, 2013 Cumulative Update 12, 2013 Cumulative Update 13, 2016 Cumulative Update 1, and 2016 Cumulative Update 2 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via ...
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
4.8
CVSSv3
CVE-2018-8813
Open redirect vulnerability in the login[redirect] parameter login functionality in WolfCMS 0.8.3.1 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a malformed URL.
Wolfcms Wolf Cms 0.8.3.1
1 EDB exploit
6.1
CVSSv3
CVE-2020-3337
A vulnerability in the web server of Cisco Umbrella could allow an unauthenticated, remote malicious user to redirect a user to an undesired web page. The vulnerability is due to improper input validation of the URL parameters in an HTTP request that is sent to an affected device...
Cisco Umbrella
7.4
CVSSv3
CVE-2016-3726
Multiple open redirect vulnerabilities in Jenkins prior to 2.3 and LTS prior to 1.651.2 allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors related to "scheme-relative" URLs.
Jenkins Jenkins
Redhat Openshift 3.1
Redhat Openshift 3.2
6.1
CVSSv3
CVE-2021-34772
A vulnerability in the web-based management interface of Cisco Orbital could allow an unauthenticated, remote malicious user to redirect users to a malicious webpage. This vulnerability is due to improper validation of URL paths in the web-based management interface. An attacker ...
Cisco Orbital -
6.1
CVSSv3
CVE-2021-1358
A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote malicious user to redirect a user to an undesired web page. This vulnerability is due to improper input validation of the URL parameters in an HTTP request that is sent t...
Cisco Finesse
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »