RSS   Vulnerabilities for 'Furikake'   RSS

2018-01-02
 
CVE-2017-1000434

CWE-601
 

 
Wordpress plugin Furikake version 0.1.0 is vulnerable to an Open Redirect The furikake-redirect parameter on a page allows for a redirect to an attacker controlled page classes/Furigana.php: header('location:'.urldecode($_GET['furikake-redirect']));

 


Copyright 2024, cxsecurity.com

 

Back to Top