Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
open redirect vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-4266
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2013-5123. Reason: This candidate is a reservation duplicate of CVE-2013-5123. Notes: All CVE users should reference CVE-2013-5123 instead of this candidate. All references and descriptions in this candidate have ...
1 EDB exploit
6.1
CVSSv3
CVE-2020-3311
A vulnerability in the web interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote malicious user to redirect a user to a malicious web page. The vulnerability is due to improper input validation of HTTP request parameters. An attacker...
Cisco Firepower Management Center
6.1
CVSSv3
CVE-2019-15974
A vulnerability in the web interface of Cisco Managed Services Accelerator (MSX) could allow an unauthenticated, remote malicious user to redirect a user to a malicious web page. The vulnerability is due to improper input validation of the parameters of an HTTP request. An attack...
Cisco Managed Services Accelerator
NA
CVE-2015-2167
Open redirect vulnerability in the 3PI Manager in Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4, 5, and 6 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter to jsp/start-3pi-manager.jsp.
Ericsson Drutt Mobile Service Delivery Platform 4.0
Ericsson Drutt Mobile Service Delivery Platform 5.0
Ericsson Drutt Mobile Service Delivery Platform 6.0
5.9
CVSSv3
CVE-2013-5123
The mirroring support (-M, --use-mirrors) in Python Pip prior to 1.5 uses insecure DNS querying and authenticity checks which allows malicious users to perform man-in-the-middle attacks.
Pypa Pip
Virtualenv Virtualenv 12.0.7
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Redhat Openshift 1.0
Redhat Openshift 2.0
Redhat Software Collections -
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
1 EDB exploit
6.1
CVSSv3
CVE-2019-7275
Optergy Proton/Enterprise devices allow Open Redirect.
Optergy Proton
Optergy Enterprise
6.1
CVSSv3
CVE-2021-28125
Apache Superset up to and including 1.0.1 allowed for the creation of an external URL that could be malicious. By not checking user input for open redirects the URL shortener functionality would allow for a malicious user to create a short URL for a dashboard that could convince ...
Apache Superset
NA
CVE-2014-8870
Open redirect vulnerability in mobiquo/smartbanner/welcome.php in the Tapatalk (com.tapatalk.wbb4) plugin prior to 1.1.2 for Woltlab Burning Board 4.0 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the board_url pa...
Tapatalk Tapatalk 1.0.2
Tapatalk Tapatalk 1.0.1
Tapatalk Tapatalk 1.1.1
Tapatalk Tapatalk 1.0.0
Tapatalk Tapatalk 1.1.0
6.1
CVSSv3
CVE-2021-1397
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote malicious user to redirect a user to a malicious web page. This vulnerability is due to improper input validation of the parameter...
Cisco Ucs Manager
Cisco Integrated Management Controller
Cisco Encs 5100 Firmware
Cisco Encs 5400 Firmware
Cisco C220 M6 Firmware
Cisco C225 M6 Firmware
Cisco C240 M6 Firmware
Cisco C245 M6 Firmware
Cisco C125 M5 Firmware
Cisco C220 M5 Firmware
Cisco C240 M5 Firmware
Cisco C480 M5 Firmware
Cisco C480 Ml M5 Firmware
Cisco Ucs-e140s Firmware
Cisco Ucs-e140d Firmware
Cisco Ucs-e160d Firmware
Cisco Ucs-e160s-m3 Firmware
Cisco Ucs-e180d-m3 Firmware
Cisco Ucs-e1120d-m3 Firmware
Cisco Ucs-e140s-m2 Firmware
Cisco Ucs-e180d-m2 Firmware
Cisco Ucs-e140s-m1 Firmware
7.4
CVSSv3
CVE-2015-8474
Open redirect vulnerability in the valid_back_url function in app/controllers/application_controller.rb in Redmine prior to 2.6.7, 3.0.x prior to 3.0.5, and 3.1.x prior to 3.1.1 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks vi...
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Redmine Redmine 3.0.2
Redmine Redmine 3.0.3
Redmine Redmine 3.0.4
Redmine Redmine
Redmine Redmine 3.0.1
Redmine Redmine 3.0.0
Redmine Redmine 2.5.1
Redmine Redmine 3.1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »