Falhas do tipo CWE-601

993 resultados
CVE-2023-6380MEDIUMOpen Redirect in Alkacon Software OpenCmsEPSS 1.6%CVE-2021-1310MEDIUMCisco Webex Meetings Open Redirect VulnerabilityEPSS 1.6%CVE-2019-14857MEDIUMA flaw was found in mod_auth_openidc before version 2.4.0.1. An open redirect issue exists in URLs with trailing slashes similar to CVE-2019EPSS 1.5%CVE-2023-46750MEDIUMApache Shiro: URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FORM authentication feature Apache Shiro.EPSS 1.5%CVE-2022-43985MEDIUMApache Airflow prior to 2.4.2 has an open redirectEPSS 1.5%CVE-2011-1594MEDIUMSpacewalk: spacewalk: open redirect vulnerability enables phishing attacks via url parameterEPSS 1.5%CVE-2022-28923MEDIUMCaddy v2.4.6 was discovered to contain an open redirection vulnerability which allows attackers to redirect users to phishing websites via cEPSS 1.4%CVE-2017-2404LOWAn issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue involves the "Quick Look" component. It allows remEPSS 1.4%CVE-2022-40754MEDIUMOpen RedirectEPSS 1.4%CVE-2021-21354HIGHOpen redirect in pollbotEPSS 1.4%CVE-2021-21291MEDIUMSubdomain checking of whitelisted domains could allow unintended redirectsEPSS 1.4%CVE-2020-26275MEDIUMOpen redirect vulnerabilityEPSS 1.4%CVE-2025-24381HIGHDell Unity, version(s) 5.4 and prior, contain(s) an URL Redirection to Untrusted Site ('Open Redirect') vulnerability. An unauthenticated atEPSS 1.3%CVE-2018-0097A vulnerability in the web interface of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to redirect a user to a mEPSS 1.2%CVE-2021-22903The actionpack ruby gem before 6.1.3.2 suffers from a possible open redirect vulnerability. Specially crafted Host headers in combination wiEPSS 1.2%CVE-2018-15403Multiple Cisco Unified Communications Products Open Redirect VulnerabilityEPSS 1.2%CVE-2020-26215MEDIUMOpen redirect in Jupyter NotebookEPSS 1.2%CVE-2021-37699MEDIUMOpen Redirect in Next.js versions below 11.1.0EPSS 1.2%CVE-2024-22262HIGHCVE-2024-22262: Spring Framework URL Parsing with Host ValidationEPSS 1.2%CVE-2024-37881MEDIUMSiteGuard WP Plugin provides a functionality to customize the path to the login page wp-login.php and implements a measure to avoid redirectEPSS 1.2%