Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: cwe-601 Clear
ID Title
CVE-2026-3872 Open Redirect in redhat (CVE-2026-3872)
vulnerability in redhat (CVE-2026-3872). Confidential information can be exposed externally.
CVE-2026-20994 Open Redirect in samsung (CVE-2026-20994)
vulnerability in samsung (CVE-2026-20994). Risk of unauthorized operations or information disclosure.
CVE-2026-2376 Open Redirect in redhat (CVE-2026-2376)
vulnerability in redhat (CVE-2026-2376). Risk of unauthorized operations or information disclosure.
CVE-2026-23817 Open Redirect in hpe (CVE-2026-23817)
vulnerability in hpe (CVE-2026-23817). Data can be tampered with by attackers.
CVE-2025-69725 Open Redirect in github.com/go-chi/chi/v5 (CVE-2025-69725)
vulnerability in github.com/go-chi/chi/v5 (CVE-2025-69725). Risk of unauthorized operations or information disclosure. Exploitable via ``RedirectSlashes``. Mitigation: upgrade to `5.2.4` or later.
CVE-2026-20123 Open Redirect in cisco (CVE-2026-20123)
vulnerability in cisco (CVE-2026-20123). Risk of unauthorized operations or information disclosure.
CVE-2025-68616 Open Redirect in weasyprint (CVE-2025-68616)
vulnerability in weasyprint (CVE-2025-68616). Confidential information can be exposed externally. Exploitable via ``default_url_fetcher``. Mitigation: upgrade to `68.0` or later.
CVE-2025-1885 Open Redirect in restajet (CVE-2025-1885)
vulnerability in restajet (CVE-2025-1885). Risk of unauthorized operations or information disclosure.
CVE-2025-47890 Open Redirect in fortinet (CVE-2025-47890)
vulnerability in fortinet (CVE-2025-47890). Risk of unauthorized operations or information disclosure.
CVE-2025-0608 Open Redirect in CVE-2025-0608 (CVE-2025-0608)
vulnerability in CVE-2025-0608 (CVE-2025-0608). Risk of unauthorized operations or information disclosure.
CVE-2025-7702 Open Redirect in CVE-2025-7702 (CVE-2025-7702)
vulnerability in CVE-2025-7702 (CVE-2025-7702). Risk of unauthorized operations or information disclosure.
CVE-2024-12924 Open Redirect in CVE-2024-12924 (CVE-2024-12924)
vulnerability in CVE-2024-12924 (CVE-2024-12924). Risk of unauthorized operations or information disclosure.
CVE-2025-4296 Open Redirect in CVE-2025-4296 (CVE-2025-4296)
vulnerability in CVE-2025-4296 (CVE-2025-4296). Risk of unauthorized operations or information disclosure.
CVE-2025-3155 Open Redirect in gnome (CVE-2025-3155)
vulnerability in gnome (CVE-2025-3155). Confidential information can be exposed externally.
CVE-2025-1269 Open Redirect in CVE-2025-1269 (CVE-2025-1269)
vulnerability in CVE-2025-1269 (CVE-2025-1269). Risk of unauthorized operations or information disclosure.
CVE-2024-44776 Open Redirect in vtiger (CVE-2024-44776)
vulnerability in vtiger (CVE-2024-44776). Risk of unauthorized operations or information disclosure.
CVE-2024-4604 Open Redirect in CVE-2024-4604 (CVE-2024-4604)
vulnerability in CVE-2024-4604 (CVE-2024-4604). Risk of unauthorized operations or information disclosure.
CVE-2021-36580 Open Redirect in icewarp (CVE-2021-36580)
vulnerability in icewarp (CVE-2021-36580). Risk of unauthorized operations or information disclosure.
CVE-2022-28977 Open Redirect in liferay (CVE-2022-28977)
vulnerability in liferay (CVE-2022-28977). Risk of unauthorized operations or information disclosure. Exploitable via ``FORWARD_URL``.
CVE-2022-27461 Open Redirect in nopcommerce (CVE-2022-27461)
vulnerability in nopcommerce (CVE-2022-27461). Risk of unauthorized operations or information disclosure.
CVE-2012-0518 KEV [KEV] Open Redirect in Oracle fusion-middleware (CVE-2012-0518)
vulnerability in Oracle fusion-middleware (CVE-2012-0518). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-10955 Open Redirect in rockwellautomation (CVE-2019-10955)
vulnerability in rockwellautomation (CVE-2019-10955). Risk of unauthorized operations or information disclosure.
CVE-2017-1558 Open Redirect in ibm (CVE-2017-1558)
vulnerability in ibm (CVE-2017-1558). Risk of unauthorized operations or information disclosure.
CVE-2017-16679 Open Redirect in sap (CVE-2017-16679)
vulnerability in sap (CVE-2017-16679). Risk of unauthorized operations or information disclosure.
CVE-2017-11482 Open Redirect in elastic (CVE-2017-11482)
vulnerability in elastic (CVE-2017-11482). Risk of unauthorized operations or information disclosure.
CVE-2017-3105 Open Redirect in adobe (CVE-2017-3105)
vulnerability in adobe (CVE-2017-3105). Risk of unauthorized operations or information disclosure.
CVE-2017-12344 Cross-Site Scripting (XSS) in cisco (CVE-2017-12344)
cross-site scripting in cisco (CVE-2017-12344). Risk of unauthorized operations or information disclosure.
CVE-2017-1000163 Open Redirect in phoenixframework (CVE-2017-1000163)
vulnerability in phoenixframework (CVE-2017-1000163). Risk of unauthorized operations or information disclosure.
CVE-2017-11879 Open Redirect in csharp (CVE-2017-11879)
vulnerability in csharp (CVE-2017-11879). Successful exploitation can lead to full system takeover.
CVE-2017-16761 Open Redirect in inedo (CVE-2017-16761)
vulnerability in inedo (CVE-2017-16761). Risk of unauthorized operations or information disclosure.
CVE-2017-16569 Open Redirect in zurmo (CVE-2017-16569)
vulnerability in zurmo (CVE-2017-16569). Risk of unauthorized operations or information disclosure.
CVE-2017-14358 Open Redirect in express (CVE-2017-14358)
vulnerability in express (CVE-2017-14358). Risk of unauthorized operations or information disclosure.
CVE-2015-6961 Open Redirect in web2py (CVE-2015-6961)
vulnerability in web2py (CVE-2015-6961). Risk of unauthorized operations or information disclosure.
CVE-2015-7943 Open Redirect in drupal (CVE-2015-7943)
vulnerability in drupal (CVE-2015-7943). Risk of unauthorized operations or information disclosure.
CVE-2017-1000117 Open Redirect in git-scm (CVE-2017-1000117)
vulnerability in git-scm (CVE-2017-1000117). Successful exploitation can lead to full system takeover.
CVE-2017-8047 Open Redirect in cloudfoundry (CVE-2017-8047)
vulnerability in cloudfoundry (CVE-2017-8047). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `275` or later.
CVE-2017-14524 Open Redirect in opentext (CVE-2017-14524)
vulnerability in opentext (CVE-2017-14524). Risk of unauthorized operations or information disclosure.
CVE-2017-14525 Open Redirect in opentext (CVE-2017-14525)
vulnerability in opentext (CVE-2017-14525). Risk of unauthorized operations or information disclosure.
CVE-2015-4668 Open Redirect in xceedium (CVE-2015-4668)
vulnerability in xceedium (CVE-2015-4668). Risk of unauthorized operations or information disclosure.
CVE-2017-14725 Open Redirect in wordpress (CVE-2017-14725)
vulnerability in wordpress (CVE-2017-14725). Risk of unauthorized operations or information disclosure.
CVE-2015-5608 Open redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1.
Open redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1.
CVE-2015-3880 Open Redirect in phpbb (CVE-2015-3880)
vulnerability in phpbb (CVE-2015-3880). Risk of unauthorized operations or information disclosure.
CVE-2017-1002150 Open Redirect in csrf (CVE-2017-1002150)
vulnerability in csrf (CVE-2017-1002150). Risk of unauthorized operations or information disclosure.
CVE-2015-2749 Open Redirect in drupal (CVE-2015-2749)
vulnerability in drupal (CVE-2015-2749). Risk of unauthorized operations or information disclosure.
CVE-2015-2750 Open Redirect in drupal (CVE-2015-2750)
vulnerability in drupal (CVE-2015-2750). Risk of unauthorized operations or information disclosure.
CVE-2015-5054 Open Redirect in ellucian (CVE-2015-5054)
vulnerability in ellucian (CVE-2015-5054). Risk of unauthorized operations or information disclosure.
CVE-2017-1449 Open Redirect in ibm (CVE-2017-1449)
vulnerability in ibm (CVE-2017-1449). Risk of unauthorized operations or information disclosure.
CVE-2017-1450 Open Redirect in ibm (CVE-2017-1450)
vulnerability in ibm (CVE-2017-1450). Risk of unauthorized operations or information disclosure.
CVE-2017-14038 CrushFTP before 7.8.0 and 8.x before 8.2.0 has a redirect vulnerability.
CrushFTP before 7.8.0 and 8.x before 8.2.0 has a redirect vulnerability.
CVE-2017-1195 Open Redirect in ibm (CVE-2017-1195)
vulnerability in ibm (CVE-2017-1195). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →