Themes Vulnerabilities

Prostore < 1.1.3 - Open Redirection

Description

The prostore WordPress theme was affected by an Open Redirection security vulnerability.

Proof of Concept

Affects Themes

prostore
Fixed in 1.1.3

References

URL
https://cxsecurity.com/issue/WLB-2020030136
URL
https://themeforest.net/item/prostore-modern-magazine-theme/7210396

Classification

Type
REDIRECT
OWASP top 10
A1: Injection
CWE
CWE-601

Miscellaneous

Verified
Yes
WPVDB ID
2e0f8b7f-96eb-443c-a553-550e42ec67dc

Timeline

Publicly Published
2014-05-07 (about 11 years ago)
Added
2020-03-24 (about 5 years ago)
Last Updated
2020-03-25 (about 5 years ago)

Other

Published
Title
Published
2021-12-27
Title
WebP Converter for Media < 4.0.3 - Unauthenticated Open redirect
Published
2024-03-25
Title
WP Customer Reviews < 3.7.1 - Malicious Redirect via HTTP-EQUIV Injection
Published
2025-08-27
Title
Podlove Podcast Publisher < 4.2.6 - Open Redirect
Published
2024-09-30
Title
EventPrime < 4.0.4.6 - Open Redirect
Published
2025-07-30
Title
Connector for Gravity Forms and Google Sheets < 1.2.5 - Open Redirect