CWE:
 

Topic
Date
Author
Low
Android o2 Business 1.2.0 Open Redirect
05.07.2020
Julien Ahrens
Low
WordPress Weekender Newspaper Themes 9.0 Open Redirection
18.04.2020
KingSkrupellos
Low
WordPress Attitude Themes 1.1.1 Open Redirection
30.03.2020
KingSkrupellos
Low
WordPress Eatery Restaurant Themes 2.2 Open Redirection
30.03.2020
KingSkrupellos
Low
WordPress justnews-child Themes 1.0 Open Redirection
30.03.2020
KingSkrupellos
Low
WordPress Nashvilleparent Themes 1.10 Open Redirection
30.03.2020
KingSkrupellos
Low
WordPress Grimag Themes 1.2.5 Open Redirection
24.03.2020
KingSkrupellos
Low
WordPress Wmyx2.0 Themes 2.0 Open Redirection
24.03.2020
KingSkrupellos
Low
WordPress ProStore Themes 1.1.2 Open Redirection
24.03.2020
KingSkrupellos
Low
WordPress Eurielle Themes 0.1.0 Open Redirection
24.03.2020
KingSkrupellos
Low
WordPress Upward Themes 1.5 Open Redirection
24.03.2020
KingSkrupellos
Low
Yandex Search Engine Open Redirection
22.03.2020
KingSkrupellos
Low
WordPress WPTouch Switch Desktop 3.x Open Redirection
22.03.2020
KingSkrupellos
Low
Koha GreenStone Library 3.x Open Redirection
22.03.2020
KingSkrupellos
Med.
Daktilo News Software 1.9 Open Redirection
22.03.2020
KingSkrupellos
Med.
Revive Adserver 5.0.4 Security Bypass / Open Redirect
14.03.2020
Matteo Beccati
Med.
HomeAutomation 3.3.2 Open Redirect
31.12.2019
LiquidWorm
Low
Apache Httpd mod_rewrite Open Redirects
21.11.2019
Anonymous
Low
Optergy Proton/Enterprise BMS 2.3.0a Open Redirect
13.11.2019
LiquidWorm
Low
ParantezTeknoloji Library Software 16.0519000 Open Redirection
05.10.2019
KingSkrupellos
Low
Desarollo por Ezink Gds-Web Open Redirection Vulnerability
04.10.2019
KingSkrupellos
Low
Devinim Library Software 19.0504000 Open Redirection Vulnerability
04.10.2019
KingSkrupellos
Low
ParantezTeknoloji Library Software 16.0519000 Open Redirection Vulnerability
04.10.2019
KingSkrupellos
Low
Mediasation Wliinc26 Open Redirection
20.08.2019
KingSkrupellos
Low
Zurmo 3.2.6 Open Redirection
28.07.2019
Daniel Bishtawi
Med.
Paypal app Link Open Redirection
09.07.2019
Iran Cyber Security Gr...
Med.
Koha Library Software 18.1106000 Tracklinks Open Redirection
20.06.2019
KingSkrupellos
Low
Spring Security OAuth 2.3 Open Redirection
19.06.2019
Riemann
Med.
WordPress 5.2.1 Antena_Ri Institute Themes 2.0 Open Redirection
10.06.2019
KingSkrupellos
Low
CMSMadeSimple Software Babel Modules 1.9.4.2 Open Redirection
03.06.2019
KingSkrupellos
Low
WordPress WPAds Plugins 1.0 Open Redirection
29.05.2019
KingSkrupellos
Low
WordPress 4.8 Nya-Comment-DoFollow Plugins 1.0 Open Redirection
29.05.2019
KingSkrupellos
Low
WordPress 5.1.1 jilijilibegin Themes LTS 4.6 Open Redirection
28.05.2019
KingSkrupellos
Low
WordPress 4.9.x Jingke Themes 1.0 Open Redirection
28.05.2019
KingSkrupellos
Low
WordPress 4.9.10 Xunjin Themes 4.6 Open Redirection
28.05.2019
KingSkrupellos
Low
WordPress 4.8.9 Tigin Themes 1.0.5 Open Redirection
28.05.2019
KingSkrupellos
Low
WordPress 5.2.1 Divi-Child Themes 1.0 Open Redirection
28.05.2019
KingSkrupellos
Med.
WordPress 4.9.10 4DMayi Themes 4.6 Open Redirection
25.05.2019
KingSkrupellos
Med.
WordPress 5.2.1 DingTalk Themes LTS 4.6 Open Redirection
25.05.2019
KingSkrupellos
Med.
WordPress 4.9.8 LaneMotorSport Responsive Themes 1.8.4 Open Redirection
25.05.2019
KingSkrupellos
Med.
WordPress 4.6.14 lqcPlugin-regiePublicites Plugins 1.0 Open Redirection
25.05.2019
KingSkrupellos
Low
Irish News TheJournal Open Redirection
23.05.2019
KingSkrupellos
Med.
WordPress 4.6.12 PHPL Plugins 1.0 Open Redirection
23.05.2019
KingSkrupellos
Low
WordPress 5.2.1 Dankov Planer Themes 1.1.2 Open Redirection
23.05.2019
KingSkrupellos
Low
WordPress 4.9.10 Aliyun Themes 5.2 Open Redirection
23.05.2019
KingSkrupellos
Low
WordPress 4.4.18 Ad-Manager Plugins 1.1.2 Open Redirection
23.05.2019
KingSkrupellos
Low
WordPress 4.9.10 Chrome-Extensions Themes 1.0 Open Redirection
23.05.2019
KingSkrupellos
Med.
Xoops Wordpress Modules WP-Ktai 0.5.0 Japan Open Redirection
20.05.2019
KingSkrupellos
Med.
Revive Adserver Deserialization / Open Redirect
02.05.2019
Matteo Beccati
Low
Masch CMStudio Banners 8.6.1 Open Redirection
29.03.2019
KingSkrupellos
Low
WordPress 4.9.10 ButterKekse Plugins Open Redirection
29.03.2019
KingSkrupellos
Low
WordPress 4.9.2 WordPress-Feed-Statistics Plugins 4.1 Open Redirection
29.03.2019
KingSkrupellos
Low
WordPress 4.8 Ait-ThemesClub TemplatePreview 1.8.1 RFI Open Redirection
28.03.2019
KingSkrupellos
Low
HollandPlaza TexelseMedia AdvertisementsCounter Plugins Open Redirection
28.03.2019
KingSkrupellos
Low
Masch CMStudio Banners Modules 8.6.1 Open Redirection
28.03.2019
KingSkrupellos
Low
WordPress 4.6.1 WireFunnel Plugins Open Redirection
28.03.2019
KingSkrupellos
Med.
WordPress 5.1.1 WPBounce AND-AntiBounce Plugins 1.0.3 Open Redirection
27.03.2019
KingSkrupellos
Low
Wordpress 5.0.4 begin Themes Open Redirection
26.03.2019
L4663r666h05t
Low
AlumniMagnet Open Redirection
26.03.2019
KingSkrupellos
Low
Progetti di Impresa SRL ItalyGov Open Redirection
26.03.2019
KingSkrupellos
Low
WordPress 3.4.2 The-CL-Amazon-Thingy Plugins 1.0 Open Redirection
23.03.2019
KingSkrupellos
Med.
WordPress 5.0.4 Age-Verification Plugins 0.5 Open Redirection
21.03.2019
KingSkrupellos
Low
WordPress 5.0.4 Zangai Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 4.9.x BigChrome Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 5.0.4 2018110612035976 Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 5.1.1 Wopus Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 4.9.10 İfxPro.Cn Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 4.9.3 itiis Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 4.9.x Wngzs Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 4.9.x Concise Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 4.9.x UsaMusic-PC Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress Aibbt Themes Open Redirection
12.03.2019
KingSkrupellos
Low
WordPress Deep Themes Open Redirection
12.03.2019
KingSkrupellos
Low
WordPress 2kqq Themes Open Redirection
12.03.2019
KingSkrupellos
Low
WordPress Azzxx Themes Open Redirection
12.03.2019
KingSkrupellos
Med.
OpenCart Price Comparison Store Modules 3.x Open Redirection
11.03.2019
KingSkrupellos
Med.
VanillaForums 2.x Open Redirection
11.03.2019
KingSkrupellos
Low
Babel 0.4.1 Open Redirection
07.03.2019
Jan Kopriva
Low
MeteoTemplate 17.1 Nectarine Diary Plugins 4.0 Open Redirection
07.03.2019
KingSkrupellos
Low
MeteoTemplate 17.1 Nectarine globalSnow Plugins 1.1 Open Redirection
07.03.2019
KingSkrupellos
Low
Meteotemplate 17.1 Nectarine indoorData Plugins 4.0 Open Redirection
07.03.2019
KingSkrupellos
Low
vBulletin 4.2.5 Ajax Threads 1.1.3 Lite Open Redirection
04.03.2019
KingSkrupellos
Low
vBulletin 4.2.5 Thread Post Bookmarking 1.2.0 Open Redirection
04.03.2019
KingSkrupellos
Low
vBulletin 4.2.5 vBSuper_PM 1.2.3 Lite Open Redirection
04.03.2019
KingSkrupellos
Low
vBulletin 4.x Seo by vBSeo 3.3.2 Open Redirection
04.03.2019
KingSkrupellos
Low
vBulletin 4.2.5 Member Map 1.1.2 Lite Open Redirection
04.03.2019
KingSkrupellos
Med.
MeteoTemplate 17.1 Nectarine Deviations Plugins 2.0 Open Redirection
03.03.2019
KingSkrupellos
Low
SMF 2.0.15 SMF4Mobile 1.1.5/1.2 SMF-Media Open Redirection
02.03.2019
KingSkrupellos
Low
XenForo 1.5.x Advanced Application Forms 1.2.2 Open Redirection
02.03.2019
KingSkrupellos
Low
XenForo 1.5.x XF-Russia Open Redirection
02.03.2019
KingSkrupellos
Low
vBulletin 3.8.x vBadvanced CMPS v3.2.3 Open Redirection
01.03.2019
KingSkrupellos
Med.
vBulletin 3.8.4 Zoints SEO 2.3.2 Computer-Logic Open Redirection
01.03.2019
KingSkrupellos
Low
vBulletin 4.2.5 vBSEO 3.6.1 Open Redirection
28.02.2019
KingSkrupellos
Low
vBulletin 4.x.x DragonByte SEO v2.0.31 Pro Open Redirection
28.02.2019
KingSkrupellos
Med.
MeteoTemplate 17.1 Nectarine windDirection Plugins 2.2 Open Redirection
27.02.2019
KingSkrupellos
Low
MeteoTemplate 17.1 Nectarine Deviations Open Redirection
26.02.2019
KingSkrupellos
Low
AsureSoftware AsureForce Time Version 12.0 Open Redirection
26.02.2019
KingSkrupellos
Med.
MeteoTemplate 17.1 Nectarine stationExtremes Plugins 2.0 Open Redirection
26.02.2019
KingSkrupellos
Low
1up! Software Going1up The Newspaper CMS 1998-2019 1.x Open Redirection
26.02.2019
KingSkrupellos
Low
Drupal Pubdlcnt 7.x-1.2 Open Redirection
22.02.2019
KingSkrupellos


CVEMAP Search Results

CVE
Details
Description
2020-06-29
Medium
CVE-2020-4037

Vendor: Oauth2 proxy project
Software: Oauth2 proxy
 

 
In OAuth2 Proxy from version 5.1.1 and less than version 6.0.0, users can provide a redirect address for the proxy to send the authenticated user to at the end of the authentication flow. This is expected to be the original URL that the user was trying to access. This redirect URL is checked within the proxy and validated before redirecting the user to prevent malicious actors providing redirects to potentially harmful sites. This has been fixed in version 6.0.0.

 
2020-06-19
Medium
CVE-2017-18897

Vendor: Mattermost
Software: Mattermost s...
 

 
An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5, when used as an OAuth 2.0 service provider. It mishandles a deny action for a redirection.

 
Medium
CVE-2020-14454

Vendor: Mattermost
Software: Mattermost d...
 

 
An issue was discovered in Mattermost Desktop App before 4.4.0. Attackers can open web pages in the desktop application because server redirection is mishandled, aka MMSA-2020-0008.

 
2020-06-18
Medium
CVE-2020-14446

Vendor: WSO2
Software: Identity server
 

 
An issue was discovered in WSO2 Identity Server through 5.10.0 and WSO2 IS as Key Manager through 5.10.0. An open redirect exists.

 
Medium
CVE-2020-3337

Vendor: Cisco
Software: Umbrella
 

 
A vulnerability in the web server of Cisco Umbrella could allow an unauthenticated, remote attacker to redirect a user to an undesired web page. The vulnerability is due to improper input validation of the URL parameters in an HTTP request that is sent to an affected device. An attacker could exploit this vulnerability by sending a crafted HTTP request that could cause the web application to redirect the request to a specified malicious URL. A successful exploit could allow the attacker to redirect a user to a malicious website.

 
2020-06-12
Waiting for details
CVE-2020-4048

Updating...
 

 
In affected versions of WordPress, due to an issue in wp_validate_redirect() and URL sanitization, an arbitrary external link can be crafted leading to unintended/open redirect when clicked. This has been patched in version 5.4.2, along with all the previously affected versions via a minor release (5.3.4, 5.2.7, 5.1.6, 5.0.10, 4.9.15, 4.8.14, 4.7.18, 4.6.19, 4.5.22, 4.4.23, 4.3.24, 4.2.28, 4.1.31, 4.0.31, 3.9.32, 3.8.34, 3.7.34).

 
2020-06-10
Medium
CVE-2020-6266

Vendor: SAP
Software: Fiori
 

 
SAP Fiori for SAP S/4HANA, versions - 100, 200, 300, 400, allows an attacker to redirect users to a malicious site due to insufficient URL validation, leading to URL Redirection.

 
2020-06-09
Medium
CVE-2020-1220

Updating...
 

 
A spoofing vulnerability exists when theMicrosoft Edge (Chromium-based) in IE Mode improperly handles specific redirects, aka 'Microsoft Edge (Chromium-based) in IE Mode Spoofing Vulnerability'.

 
Medium
CVE-2020-1323

Vendor: Microsoft
Software: Sharepoint e...
 

 
An open redirect vulnerability exists in Microsoft SharePoint that could lead to spoofing.To exploit the vulnerability, an attacker could send a link that has a specially crafted URL and convince the user to click the link, aka 'SharePoint Open Redirect Vulnerability'.

 
2020-06-02
Medium
CVE-2020-10959

Vendor: Mediawiki
Software: Mediawiki
 

 
resources/src/mediawiki.page.ready/ready.js in MediaWiki before 1.35 allows remote attackers to force a logout and external redirection via HTML content in a MediaWiki page.

 

 


Copyright 2020, cxsecurity.com

 

Back to Top