WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

wpForo Forum < 1.9.7 - Open Redirect

Description

The plugin did not validate the redirect_to parameter in the login form of the forum, leading to an open redirect issue after a successful login. Such issue could allow an attacker to induce a user to use a login URL redirecting to a website under their control and being a replica of the legitimate one, asking them to re-enter their credentials (which will then in the attacker hands)

Proof of Concept

Login to the forum using the following URL: https://example.com/community/?foro=signin&redirect_to=https://wpscan.com

Affects Plugins

wpforo
Fixed in version 1.9.7

References

CVE
CVE-2021-24406

Classification

Type

REDIRECT

OWASP top 10
A1: Injection
CWE
CWE-601

Miscellaneous

Original Researcher

Hosein_vita

Submitter

Hosein vita

Submitter website
https://vitasecurityteam.com
Verified

Yes

WPVDB ID
a9284931-555b-4c96-86a3-09e1040b0388

Timeline

Publicly Published

2021-06-14 (about 11 months ago)

Added

2021-06-14 (about 11 months ago)

Last Updated

2021-06-21 (about 11 months ago)

Our Other Services

WPScan WordPress Security Plugin