Weaknesses of type CWE-601

996 results
CVE-2025-15241MEDIUMCloudPanel Community Edition HTTP Header users redirectEPSS 0.2%CVE-2026-35475MEDIUMWeGIA - Open Redirect - backup redirection — Unvalidated $_GET['redirect']EPSS 0.2%CVE-2026-48832LOWaction/cookie.php in ecrire in SPIP before 4.4.15 is prone to an open redirect vulnerability.EPSS 0.2%CVE-2025-23183MEDIUMUBtech – CWE-601: URL Redirection to Untrusted Site ('Open Redirect')EPSS 0.2%CVE-2025-42924MEDIUMOpen Redirect vulnerabilities in SAP S/4HANA landscape (SAP E-Recruiting BSP)EPSS 0.2%CVE-2025-67713MEDIUMMiniflux 2 has an Open Redirect via protocol-relative `redirect_url`EPSS 0.2%CVE-2026-35473MEDIUMWeGIA - Open Redirect - IentradaControle - listarId() - Unvalidated $_GET['nextPage']EPSS 0.2%CVE-2026-35474MEDIUMWeGIA - Open Redirect - atualizacao redirection - Unvalidated $_GET['redirect']EPSS 0.2%CVE-2026-41569MEDIUMauthentik: WS-Federation wreply origin bypass can exfiltrate signed login responses to attacker-controlled endpointsEPSS 0.2%CVE-2025-63828MEDIUMHost Header Injection vulnerability in Backdrop CMS 1.32.1 allows attackers to manipulate the Host header in password reset requests, leadinEPSS 0.2%CVE-2026-42230MEDIUMn8n: Open Redirect in MCP OAuth Consent FlowEPSS 0.2%CVE-2026-56332MEDIUMCapgo - Open Redirect via confirmation_url ParameterEPSS 0.2%CVE-2026-23727MEDIUMWeGIA has an Open Redirect Vulnerability in control.php Endpoint via nextPage Parameter (metodo=listarTodos, nomeClasse=TipoSaidaControle)EPSS 0.2%CVE-2026-46616MEDIUMUmbraco.Cms: Open Redirect Vulnerability in Surface ControllersEPSS 0.2%CVE-2026-20123MEDIUMCisco Prime Infrastructure and Evolved Programmable Network Manager Open Redirect VulnerabilityEPSS 0.2%CVE-2026-34284MEDIUMVulnerability in the Oracle Business Process Management Suite product of Oracle Fusion Middleware (component: Human workflow 11g+). SupportEPSS 0.2%CVE-2026-34283MEDIUMVulnerability in the Oracle Identity Manager product of Oracle Fusion Middleware (component: Identity Console). Supported versions that areEPSS 0.2%CVE-2026-32932MEDIUMChamilo LMS has an Open Redirect via Unvalidated 'page' Parameter in Session Course EditEPSS 0.2%CVE-2026-1166MEDIUMOpen Redirect Vulnerability in Hitachi Ops Center AdministratorEPSS 0.2%CVE-2026-33885MEDIUMStatamic has an Open Redirect on unauthenticated endpoints via URL parsing differentialEPSS 0.2%