CVE-2024-28076

LOW Year: 2024
CVSS v3 Score
3.8
Low
Weakness Type
CWE-601
View all →

Vulnerability Description

The SolarWinds Platform was susceptible to a Arbitrary Open Redirection Vulnerability. A potential attacker can redirect to different domain when using URL parameter with relative entry in the correct format

Related Vulnerabilities

CVE-2022-1230

LOW
CVSS:3.9(Low)

This vulnerability allows local attackers to execute arbitrary code on affected installations of Samsung Galaxy S21 prior to 4.5.40.5 phones. An attacker must first obtain the ability to execute low-p...

CWE-6012022

CVE-2022-44718

LOW
CVSS:3.5(Low)

An issue was discovered in NetScout nGeniusONE 6.3.2 build 904. Open Redirection can occur (issue 2 of 2). After successful login, an attacker must visit the vulnerable parameter and inject a crafted ...

CWE-6012022

CVE-2023-34247

MEDIUM
CVSS:4.1(Medium)

Keystone is a content management system for Node.JS. There is an open redirect in the `@keystone-6/auth` package versions 7.0.0 and prior, where the redirect leading `/` filter can be bypassed. Users ...

CWE-6012023

CVE-2024-32078

MEDIUM
CVSS:4.1(Medium)

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Foliovision FV Flowplayer Video Player.This issue affects FV Flowplayer Video Player: from n/a through 7.5.44.7212.

CWE-6012024

CVE-2024-37141

LOW
CVSS:3.5(Low)

Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain an open redirect vulnerability. A remote low privileged attacker could potentially exploit this vulnerabi...

CWE-6012024

CVE-2024-37234

LOW
CVSS:3.5(Low)

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Kodezen Limited Academy LMS.This issue affects Academy LMS: from n/a through 2.0.4.

CWE-6012024