WordPress Plugin Vulnerabilities

furikake - Unauthenticated Open Redirect

Description

The furikake WordPress plugin was affected by an Unauthenticated Open Redirect security vulnerability.

Affects Plugins

Plugin icon
furikake
No known fix

References

CVE
CVE-2017-1000434
URL
https://cjc.im/advisories/0008/

Classification

Type
REDIRECT
OWASP top 10
A1: Injection
CWE
CWE-601
CVSS
6.1 (medium)

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
52c71550-7540-4a93-89b7-fb0fbc579a59

Timeline

Publicly Published
2018-01-01 (about 8 years ago)
Added
2018-01-08 (about 8 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2015-05-29
Title
Wow Moodboard Lite <= 1.1.1.1 - Open Redirect
Published
2021-01-21
Title
Digital Climate Strike WP <= 1.0.0 - Redirect to Malicious Website due to Compromised JS Asset
Published
2025-11-14
Title
YouTube Lyte < 1.7.29 - Open Redirect
Published
2021-08-25
Title
Nested Pages < 3.1.16 - Open Redirect
Published
2017-07-13
Title
Download Manager <= 2.9.50 - Open Redirect