2 matches found
CVE-2013-2694
WP Symposium WordPress plugin 13.04 contains an open redirect in invite.php exploitable via the u parameter, allowing redirects to arbitrary sites (phishing). Root cause: unvalidated/redirect parameters. Exploitation details are not provided in the connected documents. Impact is open redirect; no...
CVE-2013-2694
Open redirect vulnerability in invite.php in the WP Symposium plugin 13.04 for WordPress allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the u parameter...