CWE-601
URL Redirection to Untrusted Site ('Open Redirect')
Description
The web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a redirect.
Hierarchy (View 1000)
Parents
Children
none
Related attack patterns (CAPEC)
CAPEC-178
CVEs mapped to this weakness (835)
page 37 of 42| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-0597 | 0.00 | — | 0.03 | Feb 15, 2022 | Open Redirect in Packagist microweber/microweber prior to 1.2.11. | |||
| CVE-2022-0560 | 0.00 | — | 0.01 | Feb 11, 2022 | Open Redirect in Packagist microweber/microweber prior to 1.2.11. | |||
| CVE-2022-23618 | 0.00 | — | 0.01 | Feb 9, 2022 | XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In affected versions there is no protection against URL redirection to untrusted sites, in particular some well known parameters (xredirect) can be used to perform url… | |||
| CVE-2021-45328 | 0.00 | — | 0.01 | Feb 8, 2022 | Gitea before 1.4.3 is affected by URL Redirection to Untrusted Site ('Open Redirect') via internal URLs. | |||
| CVE-2022-23607 | 0.00 | — | 0.01 | Feb 1, 2022 | treq is an HTTP library inspired by requests but written on top of Twisted's Agents. Treq's request methods (`treq.get`, `treq.post`, etc.) and `treq.client.HTTPClient` constructor accept cookies as a dictionary. Such cookies are not bound to a single domain, and are therefore… | |||
| CVE-2022-23599 | — | 0.00 | — | 0.01 | Jan 28, 2022 | Products.ATContentTypes are the core content types for Plone 2.1 - 4.3. Versions of Plone that are dependent on Products.ATContentTypes prior to version 3.0.6 are vulnerable to reflected cross site scripting and open redirect when an attacker can get a compromised version of the… | ||
| CVE-2022-0235 | 0.00 | — | 0.02 | Jan 16, 2022 | node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor | |||
| CVE-2021-44528 | — | 0.00 | — | 0.04 | Jan 7, 2022 | A open redirect vulnerability exists in Action Pack >= 6.0.0 that could allow an attacker to craft a "X-Forwarded-Host" headers in combination with certain "allowed host" formats can cause the Host Authorization middleware in Action Pack to redirect users to a malicious website. | ||
| CVE-2022-0122 | — | 0.00 | — | 0.01 | Jan 6, 2022 | forge is vulnerable to URL Redirection to Untrusted Site | ||
| CVE-2022-21651 | 0.00 | — | 0.01 | Jan 5, 2022 | Shopware is an open source e-commerce software platform. An open redirect vulnerability has been discovered. Users may be arbitrary redirected due to incomplete URL handling in the shopware router. This issue has been resolved in version 5.7.7. There is no workaround and users… | |||
| CVE-2021-43812 | 0.00 | — | 0.01 | Dec 16, 2021 | The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. Versions before 1.6.2 do not filter out certain returnTo parameter values from the login url, which expose the application to an open redirect vulnerability. Users are advised to… | |||
| CVE-2021-4000 | — | 0.00 | — | 0.01 | Dec 3, 2021 | showdoc is vulnerable to URL Redirection to Untrusted Site | ||
| CVE-2021-3989 | — | 0.00 | — | 0.01 | Dec 1, 2021 | showdoc is vulnerable to URL Redirection to Untrusted Site | ||
| CVE-2021-3851 | 0.00 | — | 0.01 | Oct 19, 2021 | firefly-iii is vulnerable to URL Redirection to Untrusted Site | |||
| CVE-2021-22942 | — | 0.00 | — | 0.02 | Oct 18, 2021 | A possible open redirect vulnerability in the Host Authorization middleware in Action Pack >= 6.0.0 that could allow attackers to redirect users to a malicious website. | ||
| CVE-2021-22963 | — | 0.00 | — | 0.01 | Oct 14, 2021 | A redirect vulnerability in the fastify-static module version < 4.2.4 allows remote attackers to redirect users to arbitrary websites via a double slash // followed by a domain: http://localhost:3000//google.com/%2e%2e.The issue shows up on all the fastify-static applications… | ||
| CVE-2021-22964 | — | 0.00 | — | 0.01 | Oct 14, 2021 | A redirect vulnerability in the `fastify-static` module version >= 4.2.4 and < 4.4.1 allows remote attackers to redirect Mozilla Firefox users to arbitrary websites via a double slash `//` followed by a domain: `http://localhost:3000//a//youtube.com/%2e%2e%2f%2e%2e`.A DOS… | ||
| CVE-2021-23435 | 0.00 | — | 0.01 | Sep 12, 2021 | This affects the package clearance before 2.5.0. The vulnerability can be possible when users are able to set the value of session[:return_to]. If the value used for return_to contains multiple leading slashes (/////example.com) the user ends up being redirected to the external… | |||
| CVE-2021-32805 | 0.00 | — | 0.01 | Sep 8, 2021 | Flask-AppBuilder is an application development framework, built on top of Flask. In affected versions if using Flask-AppBuilder OAuth, an attacker can share a carefully crafted URL with a trusted domain for an application built with Flask-AppBuilder, this URL can redirect a user… | |||
| CVE-2021-25737 | 0.00 | — | 0.01 | Sep 6, 2021 | A security issue was discovered in Kubernetes where a user may be able to redirect pod traffic to private networks on a Node. Kubernetes already prevents creation of Endpoint IPs in the localhost or link-local range, but the same validation was not performed on EndpointSlice IPs. |
- CVE-2022-0597Feb 15, 2022risk 0.00cvss —epss 0.03
Open Redirect in Packagist microweber/microweber prior to 1.2.11.
- CVE-2022-0560Feb 11, 2022risk 0.00cvss —epss 0.01
Open Redirect in Packagist microweber/microweber prior to 1.2.11.
- CVE-2022-23618Feb 9, 2022risk 0.00cvss —epss 0.01
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In affected versions there is no protection against URL redirection to untrusted sites, in particular some well known parameters (xredirect) can be used to perform url…
- CVE-2021-45328Feb 8, 2022risk 0.00cvss —epss 0.01
Gitea before 1.4.3 is affected by URL Redirection to Untrusted Site ('Open Redirect') via internal URLs.
- CVE-2022-23607Feb 1, 2022risk 0.00cvss —epss 0.01
treq is an HTTP library inspired by requests but written on top of Twisted's Agents. Treq's request methods (`treq.get`, `treq.post`, etc.) and `treq.client.HTTPClient` constructor accept cookies as a dictionary. Such cookies are not bound to a single domain, and are therefore…
- CVE-2022-23599Jan 28, 2022risk 0.00cvss —epss 0.01
Products.ATContentTypes are the core content types for Plone 2.1 - 4.3. Versions of Plone that are dependent on Products.ATContentTypes prior to version 3.0.6 are vulnerable to reflected cross site scripting and open redirect when an attacker can get a compromised version of the…
- CVE-2022-0235Jan 16, 2022risk 0.00cvss —epss 0.02
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
- CVE-2021-44528Jan 7, 2022risk 0.00cvss —epss 0.04
A open redirect vulnerability exists in Action Pack >= 6.0.0 that could allow an attacker to craft a "X-Forwarded-Host" headers in combination with certain "allowed host" formats can cause the Host Authorization middleware in Action Pack to redirect users to a malicious website.
- CVE-2022-0122Jan 6, 2022risk 0.00cvss —epss 0.01
forge is vulnerable to URL Redirection to Untrusted Site
- CVE-2022-21651Jan 5, 2022risk 0.00cvss —epss 0.01
Shopware is an open source e-commerce software platform. An open redirect vulnerability has been discovered. Users may be arbitrary redirected due to incomplete URL handling in the shopware router. This issue has been resolved in version 5.7.7. There is no workaround and users…
- CVE-2021-43812Dec 16, 2021risk 0.00cvss —epss 0.01
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. Versions before 1.6.2 do not filter out certain returnTo parameter values from the login url, which expose the application to an open redirect vulnerability. Users are advised to…
- CVE-2021-4000Dec 3, 2021risk 0.00cvss —epss 0.01
showdoc is vulnerable to URL Redirection to Untrusted Site
- CVE-2021-3989Dec 1, 2021risk 0.00cvss —epss 0.01
showdoc is vulnerable to URL Redirection to Untrusted Site
- CVE-2021-3851Oct 19, 2021risk 0.00cvss —epss 0.01
firefly-iii is vulnerable to URL Redirection to Untrusted Site
- CVE-2021-22942Oct 18, 2021risk 0.00cvss —epss 0.02
A possible open redirect vulnerability in the Host Authorization middleware in Action Pack >= 6.0.0 that could allow attackers to redirect users to a malicious website.
- CVE-2021-22963Oct 14, 2021risk 0.00cvss —epss 0.01
A redirect vulnerability in the fastify-static module version < 4.2.4 allows remote attackers to redirect users to arbitrary websites via a double slash // followed by a domain: http://localhost:3000//google.com/%2e%2e.The issue shows up on all the fastify-static applications…
- CVE-2021-22964Oct 14, 2021risk 0.00cvss —epss 0.01
A redirect vulnerability in the `fastify-static` module version >= 4.2.4 and < 4.4.1 allows remote attackers to redirect Mozilla Firefox users to arbitrary websites via a double slash `//` followed by a domain: `http://localhost:3000//a//youtube.com/%2e%2e%2f%2e%2e`.A DOS…
- CVE-2021-23435Sep 12, 2021risk 0.00cvss —epss 0.01
This affects the package clearance before 2.5.0. The vulnerability can be possible when users are able to set the value of session[:return_to]. If the value used for return_to contains multiple leading slashes (/////example.com) the user ends up being redirected to the external…
- CVE-2021-32805Sep 8, 2021risk 0.00cvss —epss 0.01
Flask-AppBuilder is an application development framework, built on top of Flask. In affected versions if using Flask-AppBuilder OAuth, an attacker can share a carefully crafted URL with a trusted domain for an application built with Flask-AppBuilder, this URL can redirect a user…
- CVE-2021-25737Sep 6, 2021risk 0.00cvss —epss 0.01
A security issue was discovered in Kubernetes where a user may be able to redirect pod traffic to private networks on a Node. Kubernetes already prevents creation of Endpoint IPs in the localhost or link-local range, but the same validation was not performed on EndpointSlice IPs.