Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-3872 |
|
Open Redirect in redhat (CVE-2026-3872)
vulnerability in redhat (CVE-2026-3872). Confidential information can be exposed externally.
|
| CVE-2026-20994 |
|
Open Redirect in samsung (CVE-2026-20994)
vulnerability in samsung (CVE-2026-20994). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-2376 |
|
Open Redirect in redhat (CVE-2026-2376)
vulnerability in redhat (CVE-2026-2376). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23817 |
|
Open Redirect in hpe (CVE-2026-23817)
vulnerability in hpe (CVE-2026-23817). Data can be tampered with by attackers.
|
| CVE-2025-69725 |
|
Open Redirect in github.com/go-chi/chi/v5 (CVE-2025-69725)
vulnerability in github.com/go-chi/chi/v5 (CVE-2025-69725). Risk of unauthorized operations or information disclosure. Exploitable via ``RedirectSlashes``. Mitigation: upgrade to `5.2.4` or later.
|
| CVE-2026-20123 |
|
Open Redirect in cisco (CVE-2026-20123)
vulnerability in cisco (CVE-2026-20123). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-68616 |
|
Open Redirect in weasyprint (CVE-2025-68616)
vulnerability in weasyprint (CVE-2025-68616). Confidential information can be exposed externally. Exploitable via ``default_url_fetcher``. Mitigation: upgrade to `68.0` or later.
|
| CVE-2025-1885 |
|
Open Redirect in restajet (CVE-2025-1885)
vulnerability in restajet (CVE-2025-1885). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-47890 |
|
Open Redirect in fortinet (CVE-2025-47890)
vulnerability in fortinet (CVE-2025-47890). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-0608 |
|
Open Redirect in CVE-2025-0608 (CVE-2025-0608)
vulnerability in CVE-2025-0608 (CVE-2025-0608). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-7702 |
|
Open Redirect in CVE-2025-7702 (CVE-2025-7702)
vulnerability in CVE-2025-7702 (CVE-2025-7702). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-12924 |
|
Open Redirect in CVE-2024-12924 (CVE-2024-12924)
vulnerability in CVE-2024-12924 (CVE-2024-12924). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-4296 |
|
Open Redirect in CVE-2025-4296 (CVE-2025-4296)
vulnerability in CVE-2025-4296 (CVE-2025-4296). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-3155 |
|
Open Redirect in gnome (CVE-2025-3155)
vulnerability in gnome (CVE-2025-3155). Confidential information can be exposed externally.
|
| CVE-2025-1269 |
|
Open Redirect in CVE-2025-1269 (CVE-2025-1269)
vulnerability in CVE-2025-1269 (CVE-2025-1269). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-44776 |
|
Open Redirect in vtiger (CVE-2024-44776)
vulnerability in vtiger (CVE-2024-44776). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-4604 |
|
Open Redirect in CVE-2024-4604 (CVE-2024-4604)
vulnerability in CVE-2024-4604 (CVE-2024-4604). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-36580 |
|
Open Redirect in icewarp (CVE-2021-36580)
vulnerability in icewarp (CVE-2021-36580). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-28977 |
|
Open Redirect in liferay (CVE-2022-28977)
vulnerability in liferay (CVE-2022-28977). Risk of unauthorized operations or information disclosure. Exploitable via ``FORWARD_URL``.
|
| CVE-2022-27461 |
|
Open Redirect in nopcommerce (CVE-2022-27461)
vulnerability in nopcommerce (CVE-2022-27461). Risk of unauthorized operations or information disclosure.
|
| CVE-2012-0518 KEV |
|
[KEV] Open Redirect in Oracle fusion-middleware (CVE-2012-0518)
vulnerability in Oracle fusion-middleware (CVE-2012-0518). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-10955 |
|
Open Redirect in rockwellautomation (CVE-2019-10955)
vulnerability in rockwellautomation (CVE-2019-10955). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1558 |
|
Open Redirect in ibm (CVE-2017-1558)
vulnerability in ibm (CVE-2017-1558). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-16679 |
|
Open Redirect in sap (CVE-2017-16679)
vulnerability in sap (CVE-2017-16679). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11482 |
|
Open Redirect in elastic (CVE-2017-11482)
vulnerability in elastic (CVE-2017-11482). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-3105 |
|
Open Redirect in adobe (CVE-2017-3105)
vulnerability in adobe (CVE-2017-3105). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12344 |
|
Cross-Site Scripting (XSS) in cisco (CVE-2017-12344)
cross-site scripting in cisco (CVE-2017-12344). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000163 |
|
Open Redirect in phoenixframework (CVE-2017-1000163)
vulnerability in phoenixframework (CVE-2017-1000163). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11879 |
|
Open Redirect in csharp (CVE-2017-11879)
vulnerability in csharp (CVE-2017-11879). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16761 |
|
Open Redirect in inedo (CVE-2017-16761)
vulnerability in inedo (CVE-2017-16761). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-16569 |
|
Open Redirect in zurmo (CVE-2017-16569)
vulnerability in zurmo (CVE-2017-16569). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14358 |
|
Open Redirect in express (CVE-2017-14358)
vulnerability in express (CVE-2017-14358). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-6961 |
|
Open Redirect in web2py (CVE-2015-6961)
vulnerability in web2py (CVE-2015-6961). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-7943 |
|
Open Redirect in drupal (CVE-2015-7943)
vulnerability in drupal (CVE-2015-7943). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000117 |
|
Open Redirect in git-scm (CVE-2017-1000117)
vulnerability in git-scm (CVE-2017-1000117). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8047 |
|
Open Redirect in cloudfoundry (CVE-2017-8047)
vulnerability in cloudfoundry (CVE-2017-8047). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `275` or later.
|
| CVE-2017-14524 |
|
Open Redirect in opentext (CVE-2017-14524)
vulnerability in opentext (CVE-2017-14524). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14525 |
|
Open Redirect in opentext (CVE-2017-14525)
vulnerability in opentext (CVE-2017-14525). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-4668 |
|
Open Redirect in xceedium (CVE-2015-4668)
vulnerability in xceedium (CVE-2015-4668). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14725 |
|
Open Redirect in wordpress (CVE-2017-14725)
vulnerability in wordpress (CVE-2017-14725). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-5608 |
|
Open redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1.
Open redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1.
|
| CVE-2015-3880 |
|
Open Redirect in phpbb (CVE-2015-3880)
vulnerability in phpbb (CVE-2015-3880). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1002150 |
|
Open Redirect in csrf (CVE-2017-1002150)
vulnerability in csrf (CVE-2017-1002150). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-2749 |
|
Open Redirect in drupal (CVE-2015-2749)
vulnerability in drupal (CVE-2015-2749). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-2750 |
|
Open Redirect in drupal (CVE-2015-2750)
vulnerability in drupal (CVE-2015-2750). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-5054 |
|
Open Redirect in ellucian (CVE-2015-5054)
vulnerability in ellucian (CVE-2015-5054). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1449 |
|
Open Redirect in ibm (CVE-2017-1449)
vulnerability in ibm (CVE-2017-1449). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1450 |
|
Open Redirect in ibm (CVE-2017-1450)
vulnerability in ibm (CVE-2017-1450). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14038 |
|
CrushFTP before 7.8.0 and 8.x before 8.2.0 has a redirect vulnerability.
CrushFTP before 7.8.0 and 8.x before 8.2.0 has a redirect vulnerability.
|
| CVE-2017-1195 |
|
Open Redirect in ibm (CVE-2017-1195)
vulnerability in ibm (CVE-2017-1195). Risk of unauthorized operations or information disclosure.
|