CWE:
 

Topic
Date
Author
Low
Tableau Server Open Redirection
08.04.2021
Dr. Vladimir Bostanov
Low
OpenCMS 11.0.2 Cross Site Request Forgery / Open Redirection
09.03.2021
Daniel Moreno
Low
b2evolution CMS 6.11.6 Open Redirection
11.02.2021
Nakul Ratti
Low
WordPress Age Gate 2.13.4 Open Redirect
30.11.2020
Ilca Lucian Florin
Low
Twitter Analytics Open Redirect
09.10.2020
asheesh anaconda
Low
Verint Impact 360 15.1 Open Redirect
16.07.2020
Ryan Delaney
Low
Android o2 Business 1.2.0 Open Redirect
05.07.2020
Julien Ahrens
Low
WordPress Weekender Newspaper Themes 9.0 Open Redirection
18.04.2020
KingSkrupellos
Low
WordPress Attitude Themes 1.1.1 Open Redirection
30.03.2020
KingSkrupellos
Low
WordPress Eatery Restaurant Themes 2.2 Open Redirection
30.03.2020
KingSkrupellos
Low
WordPress justnews-child Themes 1.0 Open Redirection
30.03.2020
KingSkrupellos
Low
WordPress Nashvilleparent Themes 1.10 Open Redirection
30.03.2020
KingSkrupellos
Low
WordPress Grimag Themes 1.2.5 Open Redirection
24.03.2020
KingSkrupellos
Low
WordPress Wmyx2.0 Themes 2.0 Open Redirection
24.03.2020
KingSkrupellos
Low
WordPress ProStore Themes 1.1.2 Open Redirection
24.03.2020
KingSkrupellos
Low
WordPress Eurielle Themes 0.1.0 Open Redirection
24.03.2020
KingSkrupellos
Low
WordPress Upward Themes 1.5 Open Redirection
24.03.2020
KingSkrupellos
Low
Yandex Search Engine Open Redirection
22.03.2020
KingSkrupellos
Low
WordPress WPTouch Switch Desktop 3.x Open Redirection
22.03.2020
KingSkrupellos
Low
Koha GreenStone Library 3.x Open Redirection
22.03.2020
KingSkrupellos
Med.
Daktilo News Software 1.9 Open Redirection
22.03.2020
KingSkrupellos
Med.
Revive Adserver 5.0.4 Security Bypass / Open Redirect
14.03.2020
Matteo Beccati
Med.
HomeAutomation 3.3.2 Open Redirect
31.12.2019
LiquidWorm
Low
Apache Httpd mod_rewrite Open Redirects
21.11.2019
Anonymous
Low
Optergy Proton/Enterprise BMS 2.3.0a Open Redirect
13.11.2019
LiquidWorm
Low
ParantezTeknoloji Library Software 16.0519000 Open Redirection
05.10.2019
KingSkrupellos
Low
Desarollo por Ezink Gds-Web Open Redirection Vulnerability
04.10.2019
KingSkrupellos
Low
Devinim Library Software 19.0504000 Open Redirection Vulnerability
04.10.2019
KingSkrupellos
Low
ParantezTeknoloji Library Software 16.0519000 Open Redirection Vulnerability
04.10.2019
KingSkrupellos
Low
Mediasation Wliinc26 Open Redirection
20.08.2019
KingSkrupellos
Low
Zurmo 3.2.6 Open Redirection
28.07.2019
Daniel Bishtawi
Med.
Paypal app Link Open Redirection
09.07.2019
Iran Cyber Security Gr...
Med.
Koha Library Software 18.1106000 Tracklinks Open Redirection
20.06.2019
KingSkrupellos
Low
Spring Security OAuth 2.3 Open Redirection
19.06.2019
Riemann
Med.
WordPress 5.2.1 Antena_Ri Institute Themes 2.0 Open Redirection
10.06.2019
KingSkrupellos
Low
CMSMadeSimple Software Babel Modules 1.9.4.2 Open Redirection
03.06.2019
KingSkrupellos
Low
WordPress WPAds Plugins 1.0 Open Redirection
29.05.2019
KingSkrupellos
Low
WordPress 4.8 Nya-Comment-DoFollow Plugins 1.0 Open Redirection
29.05.2019
KingSkrupellos
Low
WordPress 5.1.1 jilijilibegin Themes LTS 4.6 Open Redirection
28.05.2019
KingSkrupellos
Low
WordPress 4.9.x Jingke Themes 1.0 Open Redirection
28.05.2019
KingSkrupellos
Low
WordPress 4.9.10 Xunjin Themes 4.6 Open Redirection
28.05.2019
KingSkrupellos
Low
WordPress 4.8.9 Tigin Themes 1.0.5 Open Redirection
28.05.2019
KingSkrupellos
Low
WordPress 5.2.1 Divi-Child Themes 1.0 Open Redirection
28.05.2019
KingSkrupellos
Med.
WordPress 4.9.10 4DMayi Themes 4.6 Open Redirection
25.05.2019
KingSkrupellos
Med.
WordPress 5.2.1 DingTalk Themes LTS 4.6 Open Redirection
25.05.2019
KingSkrupellos
Med.
WordPress 4.9.8 LaneMotorSport Responsive Themes 1.8.4 Open Redirection
25.05.2019
KingSkrupellos
Med.
WordPress 4.6.14 lqcPlugin-regiePublicites Plugins 1.0 Open Redirection
25.05.2019
KingSkrupellos
Low
Irish News TheJournal Open Redirection
23.05.2019
KingSkrupellos
Med.
WordPress 4.6.12 PHPL Plugins 1.0 Open Redirection
23.05.2019
KingSkrupellos
Low
WordPress 5.2.1 Dankov Planer Themes 1.1.2 Open Redirection
23.05.2019
KingSkrupellos
Low
WordPress 4.9.10 Aliyun Themes 5.2 Open Redirection
23.05.2019
KingSkrupellos
Low
WordPress 4.4.18 Ad-Manager Plugins 1.1.2 Open Redirection
23.05.2019
KingSkrupellos
Low
WordPress 4.9.10 Chrome-Extensions Themes 1.0 Open Redirection
23.05.2019
KingSkrupellos
Med.
Xoops Wordpress Modules WP-Ktai 0.5.0 Japan Open Redirection
20.05.2019
KingSkrupellos
Med.
Revive Adserver Deserialization / Open Redirect
02.05.2019
Matteo Beccati
Low
Masch CMStudio Banners 8.6.1 Open Redirection
29.03.2019
KingSkrupellos
Low
WordPress 4.9.10 ButterKekse Plugins Open Redirection
29.03.2019
KingSkrupellos
Low
WordPress 4.9.2 WordPress-Feed-Statistics Plugins 4.1 Open Redirection
29.03.2019
KingSkrupellos
Low
WordPress 4.8 Ait-ThemesClub TemplatePreview 1.8.1 RFI Open Redirection
28.03.2019
KingSkrupellos
Low
HollandPlaza TexelseMedia AdvertisementsCounter Plugins Open Redirection
28.03.2019
KingSkrupellos
Low
Masch CMStudio Banners Modules 8.6.1 Open Redirection
28.03.2019
KingSkrupellos
Low
WordPress 4.6.1 WireFunnel Plugins Open Redirection
28.03.2019
KingSkrupellos
Med.
WordPress 5.1.1 WPBounce AND-AntiBounce Plugins 1.0.3 Open Redirection
27.03.2019
KingSkrupellos
Low
Wordpress 5.0.4 begin Themes Open Redirection
26.03.2019
L4663r666h05t
Low
AlumniMagnet Open Redirection
26.03.2019
KingSkrupellos
Low
Progetti di Impresa SRL ItalyGov Open Redirection
26.03.2019
KingSkrupellos
Low
WordPress 3.4.2 The-CL-Amazon-Thingy Plugins 1.0 Open Redirection
23.03.2019
KingSkrupellos
Med.
WordPress 5.0.4 Age-Verification Plugins 0.5 Open Redirection
21.03.2019
KingSkrupellos
Low
WordPress 5.0.4 Zangai Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 4.9.x BigChrome Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 5.0.4 2018110612035976 Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 5.1.1 Wopus Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 4.9.10 İfxPro.Cn Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 4.9.3 itiis Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 4.9.x Wngzs Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 4.9.x Concise Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress 4.9.x UsaMusic-PC Themes Open Redirection
18.03.2019
KingSkrupellos
Low
WordPress Aibbt Themes Open Redirection
12.03.2019
KingSkrupellos
Low
WordPress Deep Themes Open Redirection
12.03.2019
KingSkrupellos
Low
WordPress 2kqq Themes Open Redirection
12.03.2019
KingSkrupellos
Low
WordPress Azzxx Themes Open Redirection
12.03.2019
KingSkrupellos
Med.
OpenCart Price Comparison Store Modules 3.x Open Redirection
11.03.2019
KingSkrupellos
Med.
VanillaForums 2.x Open Redirection
11.03.2019
KingSkrupellos
Low
Babel 0.4.1 Open Redirection
07.03.2019
Jan Kopriva
Low
MeteoTemplate 17.1 Nectarine Diary Plugins 4.0 Open Redirection
07.03.2019
KingSkrupellos
Low
MeteoTemplate 17.1 Nectarine globalSnow Plugins 1.1 Open Redirection
07.03.2019
KingSkrupellos
Low
Meteotemplate 17.1 Nectarine indoorData Plugins 4.0 Open Redirection
07.03.2019
KingSkrupellos
Low
vBulletin 4.2.5 Ajax Threads 1.1.3 Lite Open Redirection
04.03.2019
KingSkrupellos
Low
vBulletin 4.2.5 Thread Post Bookmarking 1.2.0 Open Redirection
04.03.2019
KingSkrupellos
Low
vBulletin 4.2.5 vBSuper_PM 1.2.3 Lite Open Redirection
04.03.2019
KingSkrupellos
Low
vBulletin 4.x Seo by vBSeo 3.3.2 Open Redirection
04.03.2019
KingSkrupellos
Low
vBulletin 4.2.5 Member Map 1.1.2 Lite Open Redirection
04.03.2019
KingSkrupellos
Med.
MeteoTemplate 17.1 Nectarine Deviations Plugins 2.0 Open Redirection
03.03.2019
KingSkrupellos
Low
SMF 2.0.15 SMF4Mobile 1.1.5/1.2 SMF-Media Open Redirection
02.03.2019
KingSkrupellos
Low
XenForo 1.5.x Advanced Application Forms 1.2.2 Open Redirection
02.03.2019
KingSkrupellos
Low
XenForo 1.5.x XF-Russia Open Redirection
02.03.2019
KingSkrupellos
Low
vBulletin 3.8.x vBadvanced CMPS v3.2.3 Open Redirection
01.03.2019
KingSkrupellos
Med.
vBulletin 3.8.4 Zoints SEO 2.3.2 Computer-Logic Open Redirection
01.03.2019
KingSkrupellos
Low
vBulletin 4.2.5 vBSEO 3.6.1 Open Redirection
28.02.2019
KingSkrupellos
Low
vBulletin 4.x.x DragonByte SEO v2.0.31 Pro Open Redirection
28.02.2019
KingSkrupellos


CVEMAP Search Results

CVE
Details
Description
2021-04-12
Waiting for details
CVE-2021-21392

Updating...
 

 
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.28.0 requests to user provided domains were not restricted to external IP addresses when transitional IPv6 addresses were used. Outbound requests to federation, identity servers, when calculating the key validity for third-party invite events, sending push notifications, and generating URL previews are affected. This could cause Synapse to make requests to internal infrastructure on dual-stack networks. See referenced GitHub security advisory for details and workarounds.

 
2021-04-05
Medium
CVE-2021-24210

Vendor: Kiboit
Software: Phastpress
 

 
There is an open redirect in the PhastPress WordPress plugin before 1.111 that allows an attacker to malform a request to a page with the plugin and then redirect the victim to a malicious page. There is also a support comment from another user one year ago (https://wordpress.org/support/topic/phast-php-used-for-remote-fetch/) that says that the php involved in the request only go to whitelisted pages but it's possible to redirect the victim to any domain.

 
Medium
CVE-2021-24165

Vendor: Ninjaforms
Software: Ninja forms
 

 
In the Ninja Forms Contact Form WordPress plugin before 3.4.34, the wp_ajax_nf_oauth_connect AJAX action was vulnerable to open redirect due to the use of a user supplied redirect parameter and no protection in place.

 
2021-04-02
Medium
CVE-2021-29651

Vendor: Pomerium
Software: Pomerium
 

 
Pomerium before 0.13.4 has an Open Redirect (issue 1 of 2).

 
Medium
CVE-2020-9995

Vendor: Apple
Software: Macos server
 

 
An issue existed in the parsing of URLs. This issue was addressed with improved input validation. This issue is fixed in macOS Server 5.11. Processing a maliciously crafted URL may lead to an open redirect or cross site scripting.

 
Medium
CVE-2021-29652

Vendor: Pomerium
Software: Pomerium
 

 
Pomerium from version 0.10.0-0.13.3 has an Open Redirect in the user sign-in/out process

 
2021-03-31
Medium
CVE-2020-24550

Vendor: Episerver
Software: FIND
 

 
An Open Redirect vulnerability in EpiServer Find before 13.2.7 allows an attacker to redirect users to untrusted websites via the _t_redirect parameter in a crafted URL, such as a /find_v2/_click URL.

 
2021-03-29
Medium
CVE-2021-27352

Vendor: ILCH
Software: Ilch cms
 

 
An open redirect vulnerability in Ilch CMS version 2.1.42 allows attackers to redirect users to an attacker's site after a successful login.

 
2021-03-26
Medium
CVE-2021-23888

Vendor: Mcafee
Software: Epolicy orch...
 

 
Unvalidated client-side URL redirect vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 10 could cause an authenticated ePO user to load an untrusted site in an ePO iframe which could steal information from the authenticated user.

 
Medium
CVE-2021-1629

Updating...
 

 
Tableau Server fails to validate certain URLs that are embedded in emails sent to Tableau Server users.

 

 


Copyright 2021, cxsecurity.com

 

Back to Top