Falhas do tipo CWE-601
995 resultadosCVE-2025-55254LOWHCL BigFix Remote Control is vulnerable to a Path-relative stylesheet import (PRSSI)EPSS 0.2%CVE-2026-45448MEDIUMntopng - CWE-601: URL Redirection to Untrusted Site ('Open Redirect')EPSS 0.2%CVE-2026-24328MEDIUMOpen Redirection vulnerability in Business Server Pages Application (TAF_APPLAUNCHER)EPSS 0.2%CVE-2025-66447NONEChamilo LMS has validation-less redirect on login pageEPSS 0.2%CVE-2026-25477MEDIUMAFFiNE: Open Redirect via Regex Bypass in redirect-proxyEPSS 0.2%CVE-2026-49380LOWIn JetBrains TeamCity before 2026.1 open redirect in the SAML plugin was possibleEPSS 0.2%CVE-2026-44833MEDIUMSnipe-IT: Open redirect vulnerabilityEPSS 0.2%CVE-2026-40181MEDIUMReact Router's same-origin redirect with path starting // causes open redirect via protocol-relative URL reinterpretationEPSS 0.2%CVE-2025-9072HIGHOne-Click Mattermost Account Takeover via Poisoned RelayState SAML ParameterEPSS 0.2%CVE-2024-34328MEDIUMAn open redirect in Sielox AnyWare v2.1.2 allows attackers to execute a man-in-the-middle attack via a crafted URL.EPSS 0.2%CVE-2025-9084LOWOpen redirect in OAuth loginEPSS 0.2%CVE-2026-44889MEDIUMWebOb: Location header normalization during redirect leads to open redirectEPSS 0.2%CVE-2025-67585MEDIUMWordPress Flexmls® IDX plugin <= 3.15.7 - Open Redirection vulnerabilityEPSS 0.2%CVE-2025-60935MEDIUMAn open redirect vulnerability in the login endpoint of Blitz Panel v1.17.0 allows attackers to redirect users to malicious domains via a crEPSS 0.2%CVE-2025-34439MEDIUMAVideo < 20.1 Open Redirect via cancelUri ParameterEPSS 0.2%CVE-2026-41479MEDIUMAuthlib OAuth 2.0 authorization endpoint open redirects to attacker-controlled redirect_uri on unsupported response_typeEPSS 0.2%CVE-2025-34440MEDIUMAVideo < 20.1 Open Redirect via siteRedirectUri ParameterEPSS 0.2%CVE-2026-27982MEDIUMAn open redirect vulnerability exists in django-allauth versions prior to 65.14.1 when SAML IdP initiated SSO is enabled (it is disabled by EPSS 0.2%CVE-2026-25956MEDIUMFrappe Affected by XSS and Open Redirect in Sign UpEPSS 0.2%CVE-2026-2376MEDIUMMirror-registry: quay: quay: server-side request forgery via open redirect vulnerability in web interfaceEPSS 0.2%