Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
open redirect vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-7292
Open redirect vulnerability in the Click-Through feature in Newtelligence dasBlog 2.1 (2.1.8102.813), 2.2 (2.2.8279.16125), and 2.3 (2.3.9074.18820) allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter ...
Newtelligence Dasblog 2.1
Newtelligence Dasblog 2.3
Newtelligence Dasblog 2.2
6.1
CVSSv3
CVE-2018-6324
F-Secure Radar (on-premises) prior to 2018-02-15 has an Unvalidated Redirect via the ReturnUrl parameter that triggers upon a user login.
F-secure Radar
NA
CVE-2015-1042
The string_sanitize_url function in core/string_api.php in MantisBT 1.2.0a3 up to and including 1.2.18 uses an incorrect regular expression, which allows remote malicious users to conduct open redirect and phishing attacks via a URL with a ":/" (colon slash) separator i...
Mantisbt Mantisbt 1.2.13
Mantisbt Mantisbt 1.2.15
Mantisbt Mantisbt 1.2.2
Mantisbt Mantisbt 1.2.0
Mantisbt Mantisbt 1.2.12
Mantisbt Mantisbt 1.2.18
Mantisbt Mantisbt 1.2.5
Mantisbt Mantisbt 1.2.10
Mantisbt Mantisbt 1.2.9
Mantisbt Mantisbt 1.2.8
Mantisbt Mantisbt 1.2.16
Mantisbt Mantisbt 1.2.11
Mantisbt Mantisbt 1.2.3
Mantisbt Mantisbt 1.2.6
Mantisbt Mantisbt 1.2.1
Mantisbt Mantisbt 1.2.7
Mantisbt Mantisbt 1.2.17
Mantisbt Mantisbt 1.2.4
Mantisbt Mantisbt 1.2.14
8.8
CVSSv3
CVE-2019-12784
An issue exists in Verint Impact 360 15.1. At wfo/control/signin, the login form can accept submissions from external websites. In conjunction with CVE-2019-12783, this can be used by malicious users to "crowdsource" bruteforce login attempts on the target site, allowin...
Verint Impact 360 15.1
6.1
CVSSv3
CVE-2021-22881
The Host Authorization middleware in Action Pack prior to 6.1.2.1, 6.0.3.5 suffers from an open redirect vulnerability. Specially crafted `Host` headers in combination with certain "allowed host" formats can cause the Host Authorization middleware in Action Pack to redi...
Rubyonrails Rails
Fedoraproject Fedora 33
5.4
CVSSv3
CVE-2017-3528
Vulnerability in the Oracle Applications Framework component of Oracle E-Business Suite (subcomponent: Popup windows (lists of values, datepicker, etc.)). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily "exploitable" vulnerabil...
Oracle Applications Framework 12.2.6
Oracle Applications Framework 12.2.5
Oracle Applications Framework 12.2.3
Oracle Applications Framework 12.1.3
Oracle Applications Framework 12.2.4
1 EDB exploit
6.1
CVSSv3
CVE-2023-5375
Open Redirect in GitHub repository mosparo/mosparo before 1.0.2.
Mosparo Mosparo
NA
CVE-2020-118822
o2 Business for Android version 1.2.0 suffers from an open redirection vulnerability.
NA
CVE-2020-118822020
o2 Business for Android version 1.2.0 suffers from an open redirection vulnerability.
NA
CVE-2014-2117
Multiple open redirect vulnerabilities in Cisco Emergency Responder (ER) 8.6 and previous versions allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified parameters, aka Bug ID CSCun37909.
Cisco Emergency Responder
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »