Unvalidated redirects and forwards are possible when a web application accepts untrusted input that could cause the web application to redirect the request to a URL contained within untrusted input. By modifying untrusted URL input to a malicious site, an attacker may successfully launch a phishing scam and steal user credentials.
References:
| Status | Component Name | Version | Disclosed By | Disclosure Date | Access Level | CVE-Number |
|---|---|---|---|---|---|---|
 |
wp-plugin : wp-symposium | 13.12 | Anantshri | 2014/07/07 | Contributor | Not Assigned |
 |
wp-plugin : daily-inspiration-generator | 2 | Anantshri | 2014/07/07 | Unauthenticated | Not Assigned |
|
wp-plugin : gdeslon-affiliate-shop | 2 | Prajalkulkarni | 2014/05/25 | Unauthenticated | Not Assigned |