Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
open redirect vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2016-5715
Open redirect vulnerability in the Console in Puppet Enterprise 2015.x and 2016.x prior to 2016.4.0 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a // (slash slash) followed by a domain in the redirect parameter. NOTE: thi...
Puppet Puppet Enterprise
6.1
CVSSv3
CVE-2023-33405
Blogengine.net 3.3.8.0 and previous versions is vulnerable to Open Redirect.
Blogengine Blogengine.net
1 Github repository
6.1
CVSSv3
CVE-2023-5375
Open Redirect in GitHub repository mosparo/mosparo before 1.0.2.
Mosparo Mosparo
NA
CVE-2014-8489
Open redirect vulnerability in startSSO.ping in the SP Endpoints in Ping Identity PingFederate 6.10.1 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the TargetResource parameter.
Pingidentity Pingfederate 6.10.1
4.7
CVSSv3
CVE-2021-1310
A vulnerability in the web-based management interface of Cisco Webex Meetings could allow an unauthenticated, remote malicious user to redirect a user to an untrusted web page, bypassing the warning mechanism that should prompt the user before the redirection. This vulnerability ...
Cisco Webex Meetings
6.1
CVSSv3
CVE-2021-1397
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote malicious user to redirect a user to a malicious web page. This vulnerability is due to improper input validation of the parameter...
Cisco Ucs Manager
Cisco Integrated Management Controller
Cisco Encs 5100 Firmware
Cisco Encs 5400 Firmware
Cisco C220 M6 Firmware
Cisco C225 M6 Firmware
Cisco C240 M6 Firmware
Cisco C245 M6 Firmware
Cisco C125 M5 Firmware
Cisco C220 M5 Firmware
Cisco C240 M5 Firmware
Cisco C480 M5 Firmware
Cisco C480 Ml M5 Firmware
Cisco Ucs-e140s Firmware
Cisco Ucs-e140d Firmware
Cisco Ucs-e160d Firmware
Cisco Ucs-e160s-m3 Firmware
Cisco Ucs-e180d-m3 Firmware
Cisco Ucs-e1120d-m3 Firmware
Cisco Ucs-e140s-m2 Firmware
Cisco Ucs-e180d-m2 Firmware
Cisco Ucs-e140s-m1 Firmware
6.1
CVSSv3
CVE-2020-3311
A vulnerability in the web interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote malicious user to redirect a user to a malicious web page. The vulnerability is due to improper input validation of HTTP request parameters. An attacker...
Cisco Firepower Management Center
6.1
CVSSv3
CVE-2019-7416
XSS and/or a Client Side URL Redirect exists in OpenText Documentum Webtop 5.3 SP2. The parameter startat in "/webtop/help/en/default.htm" is vulnerable.
Opentext Documentum Webtop 5.3
NA
CVE-2015-2167
Open redirect vulnerability in the 3PI Manager in Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4, 5, and 6 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter to jsp/start-3pi-manager.jsp.
Ericsson Drutt Mobile Service Delivery Platform 4.0
Ericsson Drutt Mobile Service Delivery Platform 5.0
Ericsson Drutt Mobile Service Delivery Platform 6.0
NA
CVE-2014-8070
Open redirect vulnerability in YOOtheme Pagekit CMS 0.8.7 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect parameter to index.php/user/logout.
Yootheme Pagekit 0.8.7
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29758
CVE-2023-42931
unauthorized
CVE-2024-1540
unprivileged
CVE-2023-24955
CVE-2024-20259
logic flaw
CVE-2024-20333
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »