Redir version 3.3 suffers from a denial of service vulnerability.
00d5955211f767c5499b874efae44de1cd74477881c9f5012ee51d4851b2a8cf
ocPortal CMS versions 7.1.5 and below are vulnerable to open URL redirection.
353cd4c439e094016caa438e0e165cbccde2fc29c1d867a80b2e7e755c9e4333
Drupal Secure Login third party module version 7.x suffers from an open redirect vulnerability.
085018766c4aca8f7f4e6b904acaa32fdef096340a8e38b04a51e988c9bae10c
Maian Survey version 1.1 suffers from local file inclusion and open redirection vulnerabilities.
20f830e6dfb378cb55c38decf34ba84e27e1652f26557fde69340b878b746147
RSA Authentication Manager version 7.1 suffers from cross site scripting and open redirection vulnerabilities.
7b098ce8c358c50145c58f82d8298ac118b949396b3359fd82e5b28d210a7e2f
WebsitePanel CMS versions prior to 1.2.2.1 suffer from an open redirection vulnerability.
f3d18a3cdffa39c307617de82222186276ef53444e6663c5f876e672f7f6a760
rd-attack is a tool for finding vulnerabilities based on ICMPv6 Redirect messages.
75ef138e80c715c496ab039939f1aa91edb626d283e4705e8ad8c770aa02c623
NevisProxy versions 3.10.2.0 and below suffer from a cross site scripting vulnerability in 302 redirects.
dae923dd2b60f5df5d2fa5557c848a9059c8eafb1786b0a7d5788e2666f9b0db
Secunia Security Advisory - A weakness has been reported in the Global Redirect module for Drupal, which can be exploited by malicious people to conduct spoofing attacks.
47c38814dcfb39c521e3c8a1bf9e8a7109156aaa9bc28e181e3b28858efffcfd
Drupal Global Redirect third party module versions 6.x and 7.x suffer from an open redirection vulnerability.
f954e02eb6b27fce9898cb582e4a94107053758103ac19cad8ebbdc238d012d4
Drupal Janrain Capture third party module versions 6.x and 7.x suffer from an open redirect vulnerability.
5cd86472df348671d59ea4a24f9de07cb78b7d14b9f0f04870be4a0cd322990f
The supermarket Netto at Netto.se suffers from an open redirection vulnerability.
c6003f6b4ebd4ddcd8b61ab0557e1ebb35273d5adbc127f0a03c4aeb92591b47
Snapdeal.com suffers from cross site scripting and URL redirection vulnerabilities.
8341259c808aa3333216afbcade6c36a1cab7644ed9a71b97c912a4891740db4
SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing.
10da16c1be95d20157145da3dd5e9ffea69818889a25c2c134fcd14c97fbf6a3
HP Security Bulletin HPSBMU02771 SSRT100558 - Potential security vulnerabilities have been identified with HP SNMP Agents for Linux. The vulnerabilities could be exploited remotely resulting in cross site scripting (XSS) and URL redirection. Revision 1 of this advisory.
15d58aa5dd1c33de68bbee8deda84faaca26f4efdfc34427ec0cedb0a0bf98e9
HP Security Bulletin HPSBMU02770 SSRT100848 - Potential security vulnerabilities have been identified with HP Insight Management Agents for Windows Server. The vulnerabilities could be exploited remotely resulting in cross site request forgery (CSRF), cross site scripting (XSS), URL redirection, unauthorized modification, and Denial of Service (DoS). Revision 1 of this advisory.
1a187ac2c37a3636dcd170dae015d6bfd3eadef2a9c915970b3725a3b7906c3e
ownCloud version 3.0.0 suffers from cross site scripting and open redirection vulnerabilities.
dcb41a8d27105adce78fe22f673e0fa7b51d9f521221de638e38bba3db43a2cf
HP Security Bulletin HPSBMU02759 SSRT100817 - Potential security vulnerabilities have been identified with HP Onboard Administrator (OA). The vulnerabilities could be exploited remotely resulting in unauthorized access, unauthorized information disclosure, Denial of Service (DoS), and URL redirection. Revision 1 of this advisory.
6ad7ba2c48944ee744e96cf3ef0e46c12152365e66984731869ed2c5c3e97ec0
.NET Form Authentication suffers from an insecure redirect vulnerability.
b7d5029d3689d071162b8d70d1707c61e41f2ed9e7f4e037b358ca18559e4141
Various Drupal modules such as Content Lock, Ubercart Bulk Stock Updater, Ubercart Payflow Link, ticketyboo News Ticker, Admin tools, and Redirecting click bouncer suffer from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.
dfba66004ce172b759e13bd0d69c968ca2876ae3c5a889fa13c062cb84aef994
Sepehr-Team suffers from an open redirection vulnerability.
425ad6ce48ac9037f30a67a94fb5b5ebcf57b4a28d8a703eb34be04267238748
This Metasploit module exploits a flaw in the Web Start component of the Sun Java Runtime Environment. The arguments passed to Java Web Start are not properly validated, allowing injection of arbitrary arguments to the JVM. By utilizing the lesser known -J option, an attacker can take advantage of the -XXaltjvm option, as discussed previously by Ruben Santamarta. This method allows an attacker to execute arbitrary code in the context of an unsuspecting browser user. In order for this module to work, it must be ran as root on a server that does not serve SMB. Additionally, the target host must have the WebClient service (WebDAV Mini-Redirector) enabled.
81161207244c8e7484b4277932284c0018d20eb38ceb3a2c62bd1e994ede6a05
Flipkart suffers from an open redirection vulnerability.
d2558700394c92a4402a54ae8fbb150f6c1eee628218eabc4649572a84567a2a
CubeCart versions 3.0.20 and below suffer from an open URL redirection vulnerability.
8fb0b91c0d8185446874dfadb33789cc6680b80322c161e21ff4e36a31252ee1
VolksBank Online Banking suffers from cross site scripting, open redirection and input validation vulnerabilities.
a96b0a40c41ccb9f1f48d5cfcdc2a59332874abcab438eb3a287bcc9f43991fd
Conduit Wibiya suffers from an open redirection vulnerability.
e2361c76d1e4ded936e8781116973facfae8899e458d0227527a7cce943a9d07