Fallos del tipo CWE-601
993 resultadosCVE-2023-5629HIGH
A CWE-601:URL Redirection to Untrusted Site (‘Open Redirect’) vulnerability exists that could
cause disclosure of information through phishEPSS 0.4%CVE-2025-55166MEDIUMsvg-sanitizer By-Passing Attribute SanitizationEPSS 0.4%CVE-2022-43950LOWA URL redirection to untrusted site ('Open Redirect') vulnerability [CWE-601] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.1 and below,EPSS 0.4%CVE-2024-9266MEDIUMOpen RedirectEPSS 0.4%CVE-2023-49240—Unauthorized access vulnerability in the launcher module. Successful exploitation of this vulnerability may affect service confidentiality.EPSS 0.4%CVE-2026-10839MEDIUMOpen redirection vulnerability in Password ManagerEPSS 0.4%CVE-2023-22729MEDIUMSilverstripe Framework has open redirect vulnerability on CMSSecurity relogin screen EPSS 0.4%CVE-2024-52512LOWNextcloud User OIDC has an open redirection when logging in with User OIDCEPSS 0.4%CVE-2026-35259HIGHVulnerability in the WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are 14.EPSS 0.4%CVE-2023-37982MEDIUMWordPress Integration for Contact Form 7 and Salesforce Plugin <= 1.3.3 is vulnerable to Open RedirectionEPSS 0.4%CVE-2023-41648MEDIUMWordPress Login and Logout Redirect Plugin <= 2.0.3 is vulnerable to Open RedirectionEPSS 0.4%CVE-2024-25715MEDIUMGlewlwyd SSO server 2.x through 2.7.6 allows open redirection via redirect_uri.EPSS 0.4%CVE-2023-45105MEDIUMWordPress affiliate-toolkit – WordPress Affiliate Plugin Plugin <= 3.3.9 is vulnerable to Open RedirectionEPSS 0.4%CVE-2023-46624MEDIUMWordPress Parcel Pro Plugin <= 1.6.11 is vulnerable to Open RedirectionEPSS 0.4%CVE-2025-62428HIGHDrawing-Captcha APP Host Header Injection in `/register` and `/confirm-email` EndpointsEPSS 0.4%CVE-2024-7902MEDIUMpkp ojs signOut redirectEPSS 0.4%CVE-2022-3145MEDIUMAn open redirect vulnerability exists in Okta OIDC Middleware prior to version 5.0.0 allowing an attacker to redirect a user to an arbitraryEPSS 0.4%CVE-2024-27291MEDIUMDocassemble open redirectEPSS 0.4%CVE-2022-36029CRITICALBigBlueButton Greenlight Open Redirect vulnerabilityEPSS 0.4%CVE-2024-28287HIGHA DOM-based open redirection in the returnUrl parameter of INSTINCT UI Web Client 6.5.0 allows attackers to redirect users to malicious siteEPSS 0.4%