Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
open redirect vulnerabilities and exploits
(subscribe to this query)
7.4
CVSSv3
CVE-2016-3726
Multiple open redirect vulnerabilities in Jenkins prior to 2.3 and LTS prior to 1.651.2 allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors related to "scheme-relative" URLs.
Jenkins Jenkins
Redhat Openshift 3.1
Redhat Openshift 3.2
NA
CVE-2014-7292
Open redirect vulnerability in the Click-Through feature in Newtelligence dasBlog 2.1 (2.1.8102.813), 2.2 (2.2.8279.16125), and 2.3 (2.3.9074.18820) allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter ...
Newtelligence Dasblog 2.3
Newtelligence Dasblog 2.1
Newtelligence Dasblog 2.2
NA
CVE-2015-1042
The string_sanitize_url function in core/string_api.php in MantisBT 1.2.0a3 up to and including 1.2.18 uses an incorrect regular expression, which allows remote malicious users to conduct open redirect and phishing attacks via a URL with a ":/" (colon slash) separator i...
Mantisbt Mantisbt 1.2.17
Mantisbt Mantisbt 1.2.18
Mantisbt Mantisbt 1.2.2
Mantisbt Mantisbt 1.2.3
Mantisbt Mantisbt 1.2.0
Mantisbt Mantisbt 1.2.13
Mantisbt Mantisbt 1.2.15
Mantisbt Mantisbt 1.2.5
Mantisbt Mantisbt 1.2.7
Mantisbt Mantisbt 1.2.1
Mantisbt Mantisbt 1.2.10
Mantisbt Mantisbt 1.2.11
Mantisbt Mantisbt 1.2.8
Mantisbt Mantisbt 1.2.9
Mantisbt Mantisbt 1.2.12
Mantisbt Mantisbt 1.2.14
Mantisbt Mantisbt 1.2.16
Mantisbt Mantisbt 1.2.4
Mantisbt Mantisbt 1.2.6
5.4
CVSSv3
CVE-2017-3528
Vulnerability in the Oracle Applications Framework component of Oracle E-Business Suite (subcomponent: Popup windows (lists of values, datepicker, etc.)). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily "exploitable" vulnerabil...
Oracle Applications Framework 12.2.4
Oracle Applications Framework 12.2.5
Oracle Applications Framework 12.2.3
Oracle Applications Framework 12.1.3
Oracle Applications Framework 12.2.6
1 EDB exploit
6.1
CVSSv3
CVE-2023-5375
Open Redirect in GitHub repository mosparo/mosparo before 1.0.2.
Mosparo Mosparo
NA
CVE-2014-2117
Multiple open redirect vulnerabilities in Cisco Emergency Responder (ER) 8.6 and previous versions allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified parameters, aka Bug ID CSCun37909.
Cisco Emergency Responder
NA
CVE-2014-8489
Open redirect vulnerability in startSSO.ping in the SP Endpoints in Ping Identity PingFederate 6.10.1 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the TargetResource parameter.
Pingidentity Pingfederate 6.10.1
6.1
CVSSv3
CVE-2018-0097
A vulnerability in the web interface of Cisco Prime Infrastructure could allow an unauthenticated, remote malicious user to redirect a user to a malicious web page, aka an Open Redirect. The vulnerability is due to improper input validation of the parameters in the HTTP request. ...
Cisco Prime Infrastructure
6.1
CVSSv3
CVE-2023-33405
Blogengine.net 3.3.8.0 and previous versions is vulnerable to Open Redirect.
Blogengine Blogengine.net
1 Github repository
NA
CVE-2014-8754
Open redirect vulnerability in track-click.php in the Ad-Manager plugin 1.1.2 for WordPress allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the out parameter.
Ad-manager Project Ad-manager 1.1.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »