Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-601 (指向未可信站点的URL重定向(开放重定向)) — Vulnerability Class 712

712 vulnerabilities classified as CWE-601 (指向未可信站点的URL重定向(开放重定向)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-32693 WordPress WebinarPress plugin <= 1.33.28 - Open Redirection Vulnerability — WebinarPress 4.7 Medium2025-04-09
CVE-2025-32694 WordPress Ultimate WP Mail plugin <= 1.3.10 - Open Redirection vulnerability — Ultimate WP Mail 4.7 Medium2025-04-09
CVE-2025-3433 Advanced Advertising System <= 1.3.1 - Open Redirect — Advanced Advertising System 6.1 Medium2025-04-08
CVE-2025-3155 Yelp: arbitrary file read 7.4 High2025-04-03
CVE-2025-31871 WordPress WP Clone any post type Plugin <= 3.6 - Open Redirect vulnerability — WP Clone any post type 4.7 Medium2025-04-01
CVE-2025-31821 WordPress Integration of Zoho CRM and Contact Form 7 plugin <= 1.0.6 - Open Redirection Vulnerability — Integration of Zoho CRM and Contact Form 7 4.7 Medium2025-04-01
CVE-2025-3027 Open Redirect vulnerability in EJBCA — EJBCA 6.1 -2025-03-31
CVE-2025-2980 Legrand SMS PowerView redirect — SMS PowerView 3.5 Low2025-03-31
CVE-2025-24381 Dell Unity 输入验证错误漏洞 — Unity 8.8 High2025-03-28
CVE-2025-30885 WordPress Bit Form plugin <= 2.18.0 - Open Redirection vulnerability — Bit Form 4.7 Medium2025-03-27
CVE-2025-30884 WordPress Bit Integrations plugin <= 2.4.10 - Open Redirection vulnerability — Bit Integrations 4.7 Medium2025-03-27
CVE-2025-30859 WordPress AliNext plugin <= 3.5.1 - Open Redirection vulnerability — AliNext 4.7 Medium2025-03-27
CVE-2025-30795 WordPress Automation By Autonami plugin <= 3.5.1 - Open Redirection vulnerability — FunnelKit Automations 4.7 Medium2025-03-27
CVE-2025-30781 WordPress Scheduled & Automatic Order Status Controller for WooCommerce plugin <= 3.7.1 - Open Redirection Vulnerability — Scheduled &amp; Automatic Order Status Controller for WooCommerce 4.7 Medium2025-03-27
CVE-2025-30164 Icinga Web 2 has open redirect on login page — icingaweb2 4.1 Medium2025-03-26
CVE-2024-8021 Open Redirect in gradio-app/gradio — gradio-app/gradio 6.1 -2025-03-20
CVE-2024-9308 Open Redirect in haotian-liu/llava — haotian-liu/llava 6.1 -2025-03-20
CVE-2024-10908 Open Redirect in lm-sys/fastchat — lm-sys/fastchat 6.1 -2025-03-20
CVE-2024-11044 Open Redirect in automatic1111/stable-diffusion-webui — automatic1111/stable-diffusion-webui 6.1 -2025-03-20
CVE-2024-10812 Open Redirect in binary-husky/gpt_academic — binary-husky/gpt_academic 6.1 -2025-03-20
CVE-2025-21104 Dell NetWorker 输入验证错误漏洞 — NetWorker 4.3 Medium2025-03-13
CVE-2025-28896 WordPress AS English Admin plugin <= 1.0.0 - Open Redirection vulnerability — AS English Admin 4.7 Medium2025-03-11
CVE-2025-1300 Open redirect in CodeChecker web server — CodeChecker 6.1 Medium2025-02-28
CVE-2024-11955 GLPI index.php redirect — GLPI 4.3 Medium2025-02-25
CVE-2025-27143 Beter Auth has an Open Redirect via Scheme-Less Callback Parameter — better-auth 6.1 -2025-02-24
CVE-2025-1488 WPO365 | MICROSOFT 365 GRAPH MAILER <= 3.2 - Open Redirect via 'redirect_to' Parameter — WPO365 | MICROSOFT 365 GRAPH MAILER 4.7 Medium2025-02-24
CVE-2024-13888 WPMobile.App <= 11.56 - Open Redirect via 'redirect' Parameter — WPMobile.App 7.2 High2025-02-20
CVE-2025-25300 smartbanner.js rel noopener XSS vulnerability — smartbanner.js 6.1 -2025-02-18
CVE-2025-1269 Open Redirect in HAVELSAN's Open Source Project Liman MYS — Liman MYS 4.8 Medium2025-02-18
CVE-2025-21401 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability — Microsoft Edge (Chromium-based) 4.5 Medium2025-02-14

Vulnerabilities classified as CWE-601 (指向未可信站点的URL重定向(开放重定向)) represent 712 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.