exploitDog

GHSA-j7h5-wpgx-r8m9

Опубликовано: 15 мая 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

The Payment Gateway for Telcell WordPress plugin through 2.0.1 does not validate the api_url parameter before redirecting the user to its value, leading to an Open Redirect issue

The Payment Gateway for Telcell WordPress plugin through 2.0.1 does not validate the api_url parameter before redirecting the user to its value, leading to an Open Redirect issue

Ссылки

EPSS

Процентиль: 76%

0.00991

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-601

Связанные уязвимости

CVE-2023-6786

CVSS3: 6.1

nvd

9 месяцев назад

The Payment Gateway for Telcell WordPress plugin through 2.0.1 does not validate the api_url parameter before redirecting the user to its value, leading to an Open Redirect issue

EPSS

Процентиль: 76%

0.00991

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-601