exploitDog

GHSA-f6gp-7xm9-vqm8

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.10 did not validate a redirect parameter on a specifically crafted URL before redirecting the user to it, leading to an Open Redirect issue.

The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.10 did not validate a redirect parameter on a specifically crafted URL before redirecting the user to it, leading to an Open Redirect issue.

Ссылки

EPSS

Процентиль: 86%

0.02906

Низкий

CVE ID

Дефекты

CWE-601

Связанные уязвимости

CVE-2021-24358

CVSS3: 6.1

nvd

больше 4 лет назад

The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.10 did not validate a redirect parameter on a specifically crafted URL before redirecting the user to it, leading to an Open Redirect issue.

EPSS

Процентиль: 86%

0.02906

Низкий

CVE ID

Дефекты

CWE-601