exploitDog

GHSA-c5rp-37r8-938g

Опубликовано: 26 апр. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

The English WordPress Admin WordPress plugin before 1.5.2 does not validate the admin_custom_language_return_url before redirecting users o it, leading to an open redirect issue

The English WordPress Admin WordPress plugin before 1.5.2 does not validate the admin_custom_language_return_url before redirecting users o it, leading to an open redirect issue

Ссылки

EPSS

Процентиль: 82%

0.01767

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-601

Связанные уязвимости

CVE-2021-25111

CVSS3: 6.1

nvd

почти 4 года назад

The English WordPress Admin WordPress plugin before 1.5.2 does not validate the admin_custom_language_return_url before redirecting users o it, leading to an open redirect issue

EPSS

Процентиль: 82%

0.01767

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-601