WordPress Plugin Vulnerabilities

WebP Converter for Media < 4.0.3 - Unauthenticated Open redirect

Description

The plugin contains a file (passthru.php) which does not validate the src parameter before redirecting the user to it, leading to an Open Redirect issue

Proof of Concept

https://example.com/wp-content/plugins/webp-converter-for-media/includes/passthru.php?src=https://wpscan.com

Affects Plugins

Plugin icon
webp-converter-for-media
Fixed in 4.0.3

References

CVE
CVE-2021-25074

Classification

Type
REDIRECT
OWASP top 10
A1: Injection
CWE
CWE-601
CVSS
4.3 (medium)

Miscellaneous

Original Researcher
Krzysztof Zając
Submitter
Krzysztof Zając
Submitter website
https://kazet.cc
Verified
Yes
WPVDB ID
f3c0a155-9563-4533-97d4-03b9bac83164

Timeline

Publicly Published
2021-12-27 (about 2 years ago)
Added
2021-12-27 (about 2 years ago)
Last Updated
2022-04-16 (about 2 years ago)

Other

Published
Title
Published
2023-10-27
Title
Seraphinite Accelerator < 2.2.29 - Authenticated Arbitrary Redirect
Published
2014-11-26
Title
Ad Manager <= 1.1.2 - Open Redirection
Published
2019-05-18
Title
Newsletter Manager < 1.5 - Unauthenticated Open Redirect
Published
2017-02-17
Title
GTranslate < 2.8.11 - Unauthenticated Open Redirect
Published
2024-04-11
Title
FV Flowplayer Video Player < 7.5.45.7212 - Authenticated (Contributor+) Arbitrary Redirect