Fallos del tipo CWE-601

993 resultados
CVE-2019-14831A vulnerability was found in Moodle 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions, where forum subscribe link coEPSS 0.8%CVE-2017-1002150python-fedora 0.8.0 and lower is vulnerable to an open redirect resulting in loss of CSRF protectionEPSS 0.8%CVE-2020-15233MEDIUMOAuth2 Redirect URL validity does not respect query parameters and character casing for loopback addressesEPSS 0.8%CVE-2023-26159HIGHVersions of the package follow-redirects before 1.15.4 are vulnerable to Improper Input Validation due to the improper handling of URLs by tEPSS 0.8%CVE-2020-3558MEDIUMCisco Firepower Management Center Software Open Redirect VulnerabilityEPSS 0.8%CVE-2020-11053HIGHOpen Redirect in OAuth2 ProxyEPSS 0.8%CVE-2021-1500MEDIUMCisco Webex Video Mesh Arbitrary Site Redirection VulnerabilityEPSS 0.8%CVE-2022-23618MEDIUMOpen Redirect in xwiki-platformEPSS 0.8%CVE-2024-29041MEDIUMExpress.js Open Redirect in malformed URLsEPSS 0.8%CVE-2022-34478MEDIUMThe <code>ms-msdt</code>, <code>search</code>, and <code>search-ms</code> protocols deliver content to Microsoft applications, bypassing theEPSS 0.8%CVE-2021-1358MEDIUMCisco Finesse Open Redirect VulnerabilityEPSS 0.8%CVE-2021-1525MEDIUMCisco Webex Meetings and Webex Meetings Server File Redirect VulnerabilityEPSS 0.8%CVE-2023-25734HIGHAfter downloading a Windows <code>.url</code> shortcut from the local filesystem, an attacker could supply a remote path that would lead to EPSS 0.8%CVE-2022-21651MEDIUMOpen redirect in shopwareEPSS 0.8%CVE-2022-28215SAP NetWeaver ABAP Server and ABAP Platform - versions 740, 750, 787, allows an unauthenticated attacker to redirect users to a malicious siEPSS 0.8%CVE-2021-3989MEDIUMOpen Redirect in star7th/showdocEPSS 0.8%CVE-2024-10908MEDIUMOpen Redirect in lm-sys/fastchatEPSS 0.8%CVE-2022-0645MEDIUMOpen redirect vulnerability via endpoint authorize_and_redirect/?redirect= in posthog/posthogEPSS 0.8%CVE-2020-15242MEDIUMOpen Redirect in Next.jsEPSS 0.8%CVE-2022-41204HIGHAn attacker can change the content of an SAP Commerce - versions 1905, 2005, 2105, 2011, 2205, login page through a manipulated URL. They caEPSS 0.8%