Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-601 (指向未可信站点的URL重定向(开放重定向)) — Vulnerability Class 712

712 vulnerabilities classified as CWE-601 (指向未可信站点的URL重定向(开放重定向)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-54793 Astro: Duplicate trailing slash feature can lead to Open Redirects — astro 6.1 -2025-08-08
CVE-2025-2824 IBM Operational Decision Manager HTTP open redirect — Operational Decision Manager 7.4 High2025-08-01
CVE-2025-8129 KoaJS Koa HTTP Header response.js back redirect — Koa 3.5 Low2025-07-25
CVE-2025-4296 Open Redirect in HotelRunner's B2B — B2B 4.7 Medium2025-07-23
CVE-2025-7953 Sanluan PublicCMS viewer.html redirect — PublicCMS 3.5 Low2025-07-22
CVE-2025-7949 Sanluan PublicCMS preview.html redirect — PublicCMS 3.5 Low2025-07-22
CVE-2025-7863 thinkgem JeeSite ServletUtils.java redirectUrl — JeeSite 3.5 Low2025-07-20
CVE-2025-7785 thinkgem JeeSite SsoController.java sso redirect — JeeSite 4.3 Medium2025-07-18
CVE-2025-6197 Grafana OSS 安全漏洞 — Grafana 4.2 Medium2025-07-18
CVE-2025-6023 Grafana OSS 安全漏洞 — Grafana 7.6 High2025-07-18
CVE-2025-7763 thinkgem JeeSite Site Controller SiteController.java select redirect — JeeSite 4.3 Medium2025-07-17
CVE-2025-54066 DiracX-Web login page has Open Redirect vulnerability — diracx-web 4.7 Medium2025-07-17
CVE-2025-53821 WeGIA vulnerable to Open Redirect in endpoint 'control.php' parameter 'nextPage' — WeGIA 4.7 Medium2025-07-14
CVE-2025-42985 Open Redirect vulnerability in SAP BusinessObjects Content Administrator workbench — SAP BusinessObjects Content Administrator workbench 6.1 Medium2025-07-08
CVE-2025-42981 Multiple vulnerabilities in SAP NetWeaver Application Server ABAP — SAP NetWeaver Application Server ABAP 6.1 Medium2025-07-08
CVE-2025-53535 Better Auth has an Open Redirect Vulnerability in originCheck Middleware Affecting Multiple Routes — better-auth 6.1AIMediumAI2025-07-07
CVE-2025-6238 AI Engine 2.8.4 - Insecure OAuth Implementation — AI Engine 8.0 High2025-07-04
CVE-2025-49592 n8n Login Flow has Open Redirect Vulnerability — n8n 4.6 Medium2025-06-26
CVE-2025-6701 Xuxueli xxl-sso doLogin redirect — xxl-sso 3.5 Low2025-06-26
CVE-2025-25012 Kibana Open Redirect — Kibana 4.3 Medium2025-06-25
CVE-2025-6552 java-aodeng Hope-Boot Login WebController.java doLogin redirect — Hope-Boot 4.3 Medium2025-06-24
CVE-2025-36016 IBM Process Mining HTTP open redirect — Process Mining 6.8 Medium2025-06-21
CVE-2025-52552 FastGPT LastRoute Parameter on Login Page Vulnerable to Open Redirect and DOM-based XSS — FastGPT 6.1AIMediumAI2025-06-21
CVE-2025-6286 PHPGurukul COVID19 Testing Management System search-report-result.php redirect — COVID19 Testing Management System 3.5 Low2025-06-19
CVE-2025-50182 urllib3 does not control redirects in browsers and Node.js — urllib3 5.3 Medium2025-06-19
CVE-2025-50181 urllib3 redirects are not disabled when retries are disabled on PoolManager instantiation — urllib3 5.3 Medium2025-06-19
CVE-2025-49868 WordPress Automation By Autonami plugin <= 3.6.0 - Open Redirection Vulnerability — FunnelKit Automations 4.7 Medium2025-06-17
CVE-2025-2091 Open redirection in M-Files Mobile — M-Files Mobile 5.0AIMediumAI2025-06-16
CVE-2025-6089 Astun Technology iShare Maps atCheckJS.aspx redirect — iShare Maps 4.3 Medium2025-06-15
CVE-2025-26394 SolarWinds SWOSH Open Redirection Vulnerability — SolarWinds Observability Self-Hosted 4.8 Medium2025-06-10

Vulnerabilities classified as CWE-601 (指向未可信站点的URL重定向(开放重定向)) represent 712 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.