Lucene search
Krzysztof ZającWPEX-ID:906D0C31-370E-46B4-AF1F-E52FBDDD00CBHistoryFeb 16, 2022 - 12:00 a.m.
Page Builder KingComposer <= 2.9.6 - Open Redirect
2022-02-1600:00:00
Krzysztof Zając
204
0.001 Low
EPSS
Percentile
41.7%
The plugin does not validate the id parameter before redirecting the user to it via the kc_get_thumbn AJAX action available to both unauthenticated and authenticated users
https://example.com/wp-admin/admin-ajax.php?action=kc_get_thumbn&id=https://wpscan.comRelated
prion
prion
Code injection
2022-03-14 15:15:00
githubexploit
githubexploit
Exploit for Open Redirect in King-Theme Kingcomposer
2023-08-09 11:53:18
Exploit for Open Redirect in King-Theme Kingcomposer
2024-05-29 04:00:25
nvd
nvd
CVE-2022-0165
2022-03-14 15:15:09
wpvulndb
wpvulndb
Page Builder KingComposer <= 2.9.6 - Open Redirect
2022-02-16 00:00:00
cve
cve
CVE-2022-0165
2022-03-14 15:15:09
patchstack
patchstack
WordPress KingComposer plugin <= 2.9.6 - Open Redirect vulnerability
2022-02-16 00:00:00
cvelist
cvelist
CVE-2022-0165 Page Builder KingComposer <= 2.9.6 - Open Redirect
2022-03-14 14:41:21
nuclei
nuclei
WordPress Page Builder KingComposer <=2.9.6 - Open Redirect
2022-05-05 16:55:21