Lucene search
WPScanCVE-2023-0552HistoryFeb 27, 2023 - 4:15 p.m.
CVE-2023-0552
2023-02-2716:15:12
WPScan
web.nvd.nist.gov
42
cve-2023
0552
registration forms
wordpress
plugin
open redirect
vulnerability
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
31.0%
The Registration Forms WordPress plugin before 3.8.2.3 does not properly validate the redirection URL when logging in and login out, leading to an Open Redirect vulnerability
Affected configurations
Node
genetechsolutionspie_registerRange<3.8.2.3wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| genetechsolutions | pie_register | * | cpe:2.3:a:genetechsolutions:pie_register:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"vendor": "Unknown",
"product": "Registration Forms",
"versions": [
{
"status": "affected",
"versionType": "custom",
"version": "3.8.1.4",
"lessThan": "3.8.2.3"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
}
]Related
nvd
nvd
CVE-2023-0552
2023-02-27 16:15:12
nuclei
nuclei
WordPress Pie Register <3.8.2.3 - Open Redirect
2023-03-31 11:28:24
prion
prion
Open redirect
2023-02-27 16:15:00
cvelist
cvelist
CVE-2023-0552 Pie Register < 3.8.2.3 - Open Redirect
2023-02-27 15:24:31
wpexploit
wpexploit
Pie Register < 3.8.2.3 - Open Redirect
2023-02-06 00:00:00
wpvulndb
wpvulndb
Pie Register < 3.8.2.3 - Open Redirect
2023-02-06 00:00:00
wordfence
wordfence
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
31.0%
Related for CVE-2023-0552