Fallos del tipo CWE-601

995 resultados
CVE-2026-46955HIGHVulnerability in the Oracle Human Resources product of Oracle E-Business Suite (component: Person). Supported versions that are affected arEPSS 0.2%CVE-2026-1369MEDIUMConditional CAPTCHA <= 4.0.0 - Open RedirectEPSS 0.2%CVE-2026-2376MEDIUMMirror-registry: quay: quay: server-side request forgery via open redirect vulnerability in web interfaceEPSS 0.2%CVE-2026-34257MEDIUMOpen Redirect vulnerability in SAP NetWeaver Application Server ABAPEPSS 0.2%CVE-2025-66596MEDIUMA vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product does not properly validate request hEPSS 0.2%CVE-2026-45307MEDIUMSpeakr: Open redirect in is_safe_url via parser mismatch on next parameterEPSS 0.2%CVE-2026-45566MEDIUMRoxy-WI: Open redirect on /login?next= via basic-auth userinfo syntax bypassEPSS 0.2%CVE-2026-56330MEDIUMCapgo - Open Redirect via Unvalidated Stripe Billing URLsEPSS 0.2%CVE-2026-40080MEDIUMCacti: Open Redirect via HTTP_REFERER substring check in auth_login_redirectEPSS 0.2%CVE-2026-45335MEDIUMWeGIA: Middleware whitelist bypass → open redirect via InternoControle.nextPageEPSS 0.1%CVE-2026-42207MEDIUMMagento LTS: Open Redirect via Unvalidated `uenc` Parameter in `stockAction()` - magento-ltsEPSS 0.1%CVE-2026-10856MEDIUMOpen redirect in MISP dashboard button widget URL handlingEPSS 0.1%CVE-2026-50089MEDIUMAqara IAM/SSO Gateway open redirectEPSS 0.1%CVE-2025-55032MEDIUMFocus incorrectly ignores Content-Disposition headers for some MIME typesEPSS 0.1%CVE-2026-45055HIGHCubeCart: Pre-Authenticated Password Reset Link Poisoning via HTTP Host HeaderEPSS 0.1%CVE-2025-1885MEDIUMOpen Redirect in Restajet's Online Food Delivery SystemEPSS 0.1%CVE-2024-58342MEDIUMXenForo Open Redirect via getDynamicRedirectEPSS 0.1%CVE-2025-0608MEDIUMOpen Redirect in Logo Software's Logo CloudEPSS 0.1%CVE-2026-27736MEDIUMBigBlueButton has Open Redirect vulnerability in ApiControllerEPSS 0.1%CVE-2026-21826MEDIUMHCL Digital Experience and HCL Digital Experience Compose could be susceptible to Host header injectionEPSS 0.1%