WordPress Plugin Vulnerabilities

Travelpayouts < 1.1.17 - Open Redirect

Description

The plugin is vulnerable to Open Redirect due to insufficient validation on the travelpayouts_redirect variable. This makes it possible for unauthenticated attackers to redirect users to potentially malicious sites if they can successfully trick them into performing an action.

Proof of Concept

Affects Plugins

Plugin icon
travelpayouts
Fixed in 1.1.17

References

CVE
CVE-2024-0337

Classification

Type
REDIRECT
OWASP top 10
A1: Injection
CWE
CWE-601
CVSS
4.3 (medium)

Miscellaneous

Original Researcher
Krzysztof Zając (CERT PL)
Submitter
Krzysztof Zając (CERT PL)
Submitter website
https://cert.pl
Submitter twitter
cert_polska_en
Verified
Yes
WPVDB ID
2f17a274-8676-4f4e-989f-436030527890

Timeline

Publicly Published
2024-02-28 (about 1 year ago)
Added
2024-02-28 (about 1 year ago)
Last Updated
2024-05-24 (about 1 year ago)

Other

Published
Title
Published
2025-04-16
Title
Listdom < 4.1.0 - Open Redirect
Published
2020-03-31
Title
WordPress SEO Plugin - Rank Math < 1.0.41 - Redirect Creation via Unprotected REST API Endpoint
Published
2021-02-16
Title
Ninja Forms < 3.4.34 - Administrator Open Redirect
Published
2023-12-27
Title
Calculated Fields Form < 1.2.29 - Contributor+ Open Redirect
Published
2015-06-05
Title
Freshdesk Support < 1.8 - Open Redirect