Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
open redirect vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2019-12784
An issue exists in Verint Impact 360 15.1. At wfo/control/signin, the login form can accept submissions from external websites. In conjunction with CVE-2019-12783, this can be used by malicious users to "crowdsource" bruteforce login attempts on the target site, allowin...
Verint Impact 360 15.1
516
VMScore
CVE-2014-2230
Open redirect vulnerability in the header function in adclick.php in OpenX 2.8.10 and previous versions allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the (1) dest parameter to adclick.php or (2) _maxdest parameter...
Openx Openx
Openx Openx 2.8.2
Openx Openx 2.8.1
Openx Openx 2.8
Openx Openx 2.8.3
Openx Openx 2.8.4
Openx Openx 2.8.5
Openx Openx 2.8.6
Openx Openx 2.8.7
Openx Openx 2.8.8
Openx Openx 2.8.9
516
VMScore
CVE-2017-18262
Blackboard Learn (Since at least 17th of October 2017) has allowed Unvalidated Redirects on any signed-in user through its endpoints for handling Shibboleth logins, as demonstrated by a webapps/bb-auth-provider-shibboleth-BBLEARN/execute/shibbolethLogin?returnUrl= URI.
Blackboard Blackboard Learn 9.1
Blackboard Blackboard Learn
516
VMScore
CVE-2016-3378
Open redirect vulnerability in Microsoft Exchange Server 2013 SP1, 2013 Cumulative Update 12, 2013 Cumulative Update 13, 2016 Cumulative Update 1, and 2016 Cumulative Update 2 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via ...
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
516
VMScore
CVE-2021-21337
Products.PluggableAuthService is a pluggable Zope authentication and authorization framework. In Products.PluggableAuthService before version 2.6.0 there is an open redirect vulnerability. A maliciously crafted link to the login form and login functionality could redirect the bro...
Zope Products.pluggableauthservice
495
VMScore
CVE-2018-8813
Open redirect vulnerability in the login[redirect] parameter login functionality in WolfCMS 0.8.3.1 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a malformed URL.
Wolfcms Wolf Cms 0.8.3.1
1 EDB exploit
516
VMScore
CVE-2018-6324
F-Secure Radar (on-premises) prior to 2018-02-15 has an Unvalidated Redirect via the ReturnUrl parameter that triggers upon a user login.
F-secure Radar
516
VMScore
CVE-2020-3337
A vulnerability in the web server of Cisco Umbrella could allow an unauthenticated, remote malicious user to redirect a user to an undesired web page. The vulnerability is due to improper input validation of the URL parameters in an HTTP request that is sent to an affected device...
Cisco Umbrella
516
VMScore
CVE-2021-34772
A vulnerability in the web-based management interface of Cisco Orbital could allow an unauthenticated, remote malicious user to redirect users to a malicious webpage. This vulnerability is due to improper validation of URL paths in the web-based management interface. An attacker ...
Cisco Orbital -
516
VMScore
CVE-2021-1358
A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote malicious user to redirect a user to an undesired web page. This vulnerability is due to improper input validation of the URL parameters in an HTTP request that is sent t...
Cisco Finesse
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400
CVE-2023-7252
CVE-2024-21111
denial of service
CVE-2024-29661
CVE-2024-22856
remote attackers
encryption
CVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »