WordPress Plugin Vulnerabilities

WordPress Toolbar <= 2.2.6 - Open Redirect

Description

The plugin redirects to any URL via the "wptbto" parameter. This makes it possible for unauthenticated attackers to redirect users to potentially malicious sites if they can successfully trick them into performing an action.

Proof of Concept

Affects Plugins

Plugin icon
wordpress-toolbar
No known fix

References

CVE
CVE-2023-6389
URL
https://magos-securitas.com/txt/CVE-2023-6389.txt

Classification

Type
REDIRECT
OWASP top 10
A1: Injection
CWE
CWE-601
CVSS
4.7 (medium)

Miscellaneous

Original Researcher
Daniel Ruf
Submitter
Daniel Ruf
Submitter website
https://magos-securitas.com
Verified
Yes
WPVDB ID
04dafc55-3a8d-4dd2-96da-7a8b100e5a81

Timeline

Publicly Published
2024-01-03 (about 1 year ago)
Added
2024-01-03 (about 1 year ago)
Last Updated
2024-01-03 (about 1 year ago)

Other

Published
Title
Published
2024-09-16
Title
Share This Image < 2.04 - Open Redirect via link Parameter
Published
2023-04-27
Title
WP Directory Kit < 1.2.0 - Open Redirect
Published
2019-10-08
Title
All In One WP Security & Firewall <= 4.4.1 - Open Redirect & Hidden Login Page Exposure
Published
2023-09-01
Title
Login and Logout Redirect <= 2.0.2 - Open Redirect
Published
2025-04-09
Title
WebinarPress <= 1.33.27 - Open Redirect