CWE-601: Open Redirect

This vulnerability in HCL BigFix Remote Control Lite Web Portal allows attackers to execute malicious code by exploiting improper path-relative styles...

This CVE describes an open redirect vulnerability in the WP YouTube Lyte WordPress plugin that allows attackers to redirect users to malicious website...

This CVE describes an open redirect vulnerability in Edimax BR-6258n routers up to version 1.18. Attackers can manipulate the submit-url parameter to ...

An open redirect vulnerability in Moodle's OAuth login flow allows attackers to redirect authenticated users to malicious websites. This affects all M...

This CVE describes an open redirect vulnerability in the Edimax BR-6208AC router's web configuration interface. Attackers can manipulate the wlan-url ...

This CVE describes an open redirect vulnerability in CloudPanel Community Edition where attackers can manipulate the Referer HTTP header to redirect u...

This CVE describes an unvalidated redirect vulnerability in Splunk Enterprise and Cloud Platform where low-privileged authenticated users can create d...

Mattermost versions 10.11.4 and earlier contain an open redirect vulnerability on the /error page. An attacker can craft a malicious link that redirec...

This vulnerability allows unauthenticated attackers to craft malicious URLs that exploit an unvalidated redirect in Splunk Web's login endpoint. When ...

An open redirect vulnerability in Angular SSR allows attackers to manipulate URLs when applications are deployed behind proxies that pass unsanitized ...

Qwik versions before 1.19.0 contain an open redirect vulnerability in Qwik City's default request handler middleware. This allows attackers to create ...

This vulnerability in Jitsi Meet allows attackers to hijack the OAuth authentication window for Microsoft accounts, potentially stealing login credent...

Datasette versions 0.65.1 and below, and 1.0a0 through 1.0a19 contain an open redirect vulnerability where requests to paths starting with double slas...