Fallos del tipo CWE-601
993 resultadosCVE-2020-21038MEDIUMOpen redirect vulnerability in typecho 1.1-17.10.30-release via the referer parameter to Login.php.EPSS 0.5%CVE-2015-10113LOWWooFramework Tweaks Plugin wooframework-tweaks.php admin_screen_logic redirectEPSS 0.5%CVE-2023-29307MEDIUMOpen Redirect on AEM TargetEPSS 0.5%CVE-2015-10052MEDIUMcalesanz gibb-modul-151 login redirectEPSS 0.5%CVE-2023-48928MEDIUMFranklin Fueling Systems System Sentinel AnyWare (SSA) version 1.6.24.492 is vulnerable to Open Redirect. The 'path' parameter of the prefs.EPSS 0.5%CVE-2024-22400LOWOpen redirect in user_saml via RelayState parameter in Nextcloud User SamlEPSS 0.5%CVE-2023-5986HIGH
A CWE-601 URL Redirection to Untrusted Site vulnerability exists that could cause an openredirect vulnerability leading to a cross site scrEPSS 0.5%CVE-2022-4589MEDIUMcyface Terms and Conditions Module views.py returnTo redirectEPSS 0.5%CVE-2015-10102MEDIUMFreshdesk Plugin redirectEPSS 0.5%CVE-2022-41275MEDIUMIn SAP Solution Manager (Enterprise Search) - versions 740, and 750, an unauthenticated attacker can generate a link that, if clicked by a lEPSS 0.5%CVE-2024-25559MEDIUMURL spoofing vulnerability exists in a-blog cms Ver.3.1.0 to Ver.3.1.8. If an attacker sends a specially crafted request, the administrator EPSS 0.4%CVE-2025-68602MEDIUMWordPress Accept Donations with PayPal plugin <= 1.5.2 - Open Redirection vulnerabilityEPSS 0.4%CVE-2023-22958MEDIUMThe Syracom Secure Login plugin before 3.1.1.0 for Jira may allow spoofing of 2FA PIN validation via the plugins/servlet/twofactor/public/piEPSS 0.4%CVE-2025-68616HIGHWeasyPrint Vulnerable to Server-Side Request Forgery (SSRF) Protection Bypass via HTTP RedirectEPSS 0.4%CVE-2024-46326MEDIUMPublic Knowledge Project pkp-lib 3.4.0-7 and earlier is vulnerable to Open redirect due to a lack of input sanitization in the logout functiEPSS 0.4%CVE-2024-8761HIGHShare This Image <= 2.03 - Open Redirect via link ParameterEPSS 0.4%CVE-2025-64754LOWJitsi Meet has DOM Redirect on Microsoft OAuth FlowEPSS 0.4%CVE-2022-27547MEDIUMHCL iNotes is susceptible to a link to non-existent domain vulnerability.EPSS 0.4%CVE-2025-58044MEDIUMJumpServer has an Open Redirect VulnerabilityEPSS 0.4%CVE-2023-50456MEDIUMAn issue was discovered in Zammad before 6.2.0. An attacker can trigger phishing links in generated notification emails via a crafted first EPSS 0.4%