Fallos del tipo CWE-601

993 resultados
CVE-2019-11269MEDIUMOpen Redirector in spring-security-oauth2EPSS 8.9%CVE-2021-21337MEDIUMURL Redirection to Untrusted Site ('Open Redirect') in Products.PluggableAuthServiceEPSS 8.4%CVE-2022-1702SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions accept a user-controlled input that specifies a link to an exterEPSS 8.4%CVE-2020-15129MEDIUMOpen redirect in TraefikEPSS 8.2%CVE-2020-11034MEDIUMbypass of manageRedirect in GLPIEPSS 7.6%CVE-2024-8897MEDIUMUnder certain conditions, an attacker with the ability to redirect users to a malicious site via an open redirect on a trusted site, may be EPSS 6.9%CVE-2025-0244MEDIUMAddress bar spoofing using an invalid protocol scheme on Firefox for AndroidEPSS 6.6%CVE-2020-8559MEDIUMPrivilege escalation from compromised node to clusterEPSS 6.1%CVE-2023-41080Apache Tomcat: Open redirect with FORM authenticationEPSS 6.0%CVE-2022-23102A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0). Affected products contain an open redirect vulnerEPSS 5.3%CVE-2019-3912An open redirect vulnerability in LabKey Server Community Edition before 18.3.0-61806.763 via the /__r1/ returnURL parameter allows an unautEPSS 4.8%CVE-2012-0518MEDIUMUnspecified vulnerability in the Oracle Application Server Single Sign-On component in Oracle Fusion Middleware 10.1.4.3.0 allows remote attEPSS 4.7%KEVCVE-2021-38000MEDIUMInsufficient validation of untrusted input in Intents in Google Chrome on Android prior to 95.0.4638.69 allowed a remote attacker to arbitraEPSS 4.5%KEVCVE-2022-0165Page Builder KingComposer <= 2.9.6 - Open RedirectEPSS 4.3%CVE-2021-44528A open redirect vulnerability exists in Action Pack >= 6.0.0 that could allow an attacker to craft a "X-Forwarded-Host" headers in combinatiEPSS 4.2%CVE-2024-22243HIGHCVE-2024-22243: Spring Framework URL Parsing with Host ValidationEPSS 4.0%CVE-2025-6197MEDIUMAn open redirect vulnerability has been identified in Grafana OSS organization switching functionality. Prerequisites for exploitation: -EPSS 3.7%CVE-2021-24406wpForo Forum < 1.9.7 - Open RedirectEPSS 3.4%CVE-2022-0692MEDIUMOpen Redirect on Rudloff/alltube in rudloff/alltubeEPSS 3.4%CVE-2019-14830A vulnerability was found in Moodle 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions, where the mobile launch endpoEPSS 3.3%