Lucene search

K
patchstackHosein VitPATCHSTACK:C773E23042A2C70EA07A69502FB57998
HistoryJun 14, 2021 - 12:00 a.m.

WordPress wpForo Forum plugin <= 1.9.6 - Open Redirect vulnerability

2021-06-1400:00:00
Hosein Vit
patchstack.com
16

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

Open Redirect vulnerability discovered by Hosein Vita in WordPress wpForo Forum plugin (versions <= 1.9.6).

Solution

           Update the WordPress wpForo Forum plugin to the latest available version (at least 1.9.7).
CPENameOperatorVersion
wpforo forumle1.9.6

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

Related for PATCHSTACK:C773E23042A2C70EA07A69502FB57998