Fallos del tipo CWE-601
993 resultadosCVE-2024-56955MEDIUMAn issue in Tencent Technology (Shenzhen) Company Limited QQMail iOS 6.6.4 allows attackers to access sensitive user information via supplyiEPSS 0.3%CVE-2024-56949MEDIUMAn issue in Guangzhou Polar Future Culture Technology Co., Ltd University Search iOS 2.27.0 allows attackers to access sensitive user informEPSS 0.3%CVE-2024-56959MEDIUMAn issue in Mashang Consumer Finance Co., Ltd Anyihua iOS 3.6.2 allows attackers to access sensitive user information via supplying a crafteEPSS 0.3%CVE-2024-56950MEDIUMAn issue in KuGou Technology Co., Ltd KuGou Concept iOS 4.0.61 allows attackers to access sensitive user information via supplying a craftedEPSS 0.3%CVE-2024-56954MEDIUMAn issue in Beijing Baidu Netcom Science & Technology Co Ltd Haokan Video iOS 7.70.0 allows attackers to access sensitive user information vEPSS 0.3%CVE-2024-56967MEDIUMAn issue in Cloud Whale Interactive Technology LLC. PolyBuzz iOS 2.0.20 allows attackers to access sensitive user information via supplying EPSS 0.3%CVE-2024-56966MEDIUMAn issue in Shanghai Xuan Ting Entertainment Information & Technology Co., Ltd Qidian Reader iOS 5.9.384 allows attackers to access sensitivEPSS 0.3%CVE-2024-44776MEDIUMAn Open Redirect vulnerability in the page parameter of vTiger CRM v7.4.0 allows attackers to redirect users to a malicious site via a craftEPSS 0.3%CVE-2024-47646MEDIUMWordPress Payflex Payment Gateway plugin <= 2.6.1 - Open Redirection vulnerabilityEPSS 0.3%CVE-2024-47354MEDIUMWordPress Simple Membership After Login Redirection plugin <= 1.6 - Open Redirection vulnerabilityEPSS 0.3%CVE-2025-55624MEDIUMAn intent redirection vulnerability in Reolink v4.54.0.4.20250526 allows unauthorized attackers to access internal functions or access non-pEPSS 0.3%CVE-2024-0953MEDIUMWhen a user scans a QR Code with the QR Code Scanner feature, the user is not prompted before being navigated to the page specified in the cEPSS 0.3%CVE-2025-10229MEDIUMFreshwork logout redirectEPSS 0.3%CVE-2025-50477MEDIUMA URL redirection in lbry-desktop v0.53.9 allows attackers to redirect victim users to attacker-controlled pages.EPSS 0.3%CVE-2025-62716HIGHPlane Vulnerable to Cross-Site Scripting via Open Redirect in ?next_path ParameterEPSS 0.3%CVE-2025-6238HIGHAI Engine 2.8.4 - Insecure OAuth ImplementationEPSS 0.3%CVE-2026-11477MEDIUMhs-web hsweb-framework OAuth2 Client OAuth2Client.java OAuth2Client redirectEPSS 0.3%CVE-2026-27738MEDIUMAngular SSR has an Open Redirect via X-Forwarded-PrefixEPSS 0.3%CVE-2023-23855MEDIUMSAP Solution Manager - version 720, allows an authenticated attacker to redirect users to a malicious site due to insufficient URL validatioEPSS 0.3%CVE-2025-59426MEDIUMlobe-chat has an Open RedirectEPSS 0.3%