Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-601 (指向未可信站点的URL重定向(开放重定向)) — Vulnerability Class 712

712 vulnerabilities classified as CWE-601 (指向未可信站点的URL重定向(开放重定向)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-11240 Open redirect vulnerability in KNIME Business Hub — KNIME Business Hub 6.1 -2025-10-02
CVE-2025-61587 Weblate integration with Anubis can lead to Open Redirect via redir parameter — weblate 6.1 -2025-10-01
CVE-2025-57872 BUG-000174150 - Unvalidated redirect in Portal for ArcGIS. — Portal for ArcGIS 6.1 Medium2025-09-29
CVE-2025-57878 BUG-000174149 - The Portal for ArcGIS has an unvalidated redirect. — Portal for ArcGIS 6.1 Medium2025-09-29
CVE-2025-57879 BUG-000171009 - URL manipulation vulnerability in Portal for ArcGIS. — Portal for ArcGIS 6.1 Medium2025-09-29
CVE-2025-59426 lobe-chat has an Open Redirect — lobe-chat 4.3 Medium2025-09-25
CVE-2025-58006 WordPress WP Gravity Forms Keap/Infusionsoft plugin <= 1.2.6 - Open Redirection vulnerability — WP Gravity Forms Keap/Infusionsoft 4.7 Medium2025-09-22
CVE-2025-7702 Open Redirect in PUSULA's Manageable Email Sending System — Manageable Email Sending System 4.7 Medium2025-09-19
CVE-2025-9072 One-Click Mattermost Account Takeover via Poisoned RelayState SAML Parameter — Mattermost 7.6 High2025-09-15
CVE-2025-9084 Open redirect in OAuth login — Mattermost 3.1 Low2025-09-15
CVE-2025-43795 Liferay Portal和Liferay DXP 输入验证错误漏洞 — Portal 6.1 -2025-09-12
CVE-2025-10229 Freshwork logout redirect — Freshwork 4.3 Medium2025-09-10
CVE-2025-39523 WordPress GoodBarber plugin <= 1.0.26 - Open Redirection Vulnerability — GoodBarber 4.7 Medium2025-09-09
CVE-2025-59013 Open Redirect in TYPO3 CMS — TYPO3 CMS 6.1AIMediumAI2025-09-09
CVE-2025-20291 Cisco Webex Meetings 输入验证错误漏洞 — Cisco Webex Meetings 4.3 Medium2025-09-03
CVE-2024-12924 Open Redirect in Akinsoft's QR Menu — QR Menü 6.3 Medium2025-09-01
CVE-2025-58067 Basecamp's Google Sign-In for Rails allowed redirects to protocol-relative URI — google_sign_in 4.2 Medium2025-08-29
CVE-2025-58204 WordPress Podlove Podcast Publisher Plugin <= 4.2.5 - Open Redirection Vulnerability — Podlove Podcast Publisher 4.7 Medium2025-08-27
CVE-2025-57821 Basecamp's Google Sign-In for Rails allowed redirects to a malformed URL — google_sign_in 4.2 Medium2025-08-27
CVE-2025-20317 Cisco UCS Virtual Keyboard Video Monitor (vKVM) Open Redirect Vulnerability — Cisco Unified Computing System (Managed) 7.1 High2025-08-27
CVE-2025-2697 IBM Cognos Command Center HTTP Open Redirect — Cognos Command Center 7.4 High2025-08-26
CVE-2025-43767 Liferay Portal和Liferay DXP 输入验证错误漏洞 — Portal 6.1AIMediumAI2025-08-23
CVE-2025-55751 OnboardLite Open Redirect Endpoint — OnboardLite 6.1AIMediumAI2025-08-20
CVE-2025-55706 Movable Type 输入验证错误漏洞 — Movable Type (Software Edition) 6.1 -2025-08-20
CVE-2025-9193 TOTVS Portal Meu RH Password Reset redirect — Portal Meu RH 3.5 Low2025-08-20
CVE-2025-8066 Bunker Web 1.6.2 - Uncontrolled external site redirect — Bunker Web 6.1AIMediumAI2025-08-15
CVE-2025-55207 @astrojs/node's trailing slash handling causes open redirect issue — astro 6.1AIMediumAI2025-08-15
CVE-2025-54681 WordPress Connector for Gravity Forms and Google Sheets Plugin plugin <= 1.2.4 - Open Redirection Vulnerability — Connector for Gravity Forms and Google Sheets 4.7 Medium2025-08-14
CVE-2025-8813 atjiu pybbs IndexController.java changeLanguage redirect — pybbs 3.5 Low2025-08-10
CVE-2025-8737 zlt2000 microservices-platform OauthLogoutSuccessHandler.java onLogoutSuccess redirect — microservices-platform 3.5 Low2025-08-08

Vulnerabilities classified as CWE-601 (指向未可信站点的URL重定向(开放重定向)) represent 712 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.