Lucene search
MustLivePATCHSTACK:07F5E8F56BD21E9705729842824C0877HistoryJun 12, 2013 - 12:00 a.m.
WordPress <= 3.6.0 - Multiple vulnerabilities
2013-06-1200:00:00
MustLive
patchstack.com
10
EPSS
0.018
Percentile
88.2%
The attackers can bypass intended redirection restrictions via a crafted string, because this WordPress version (and lower versions too) does not properly validate URLs before use in an HTTP redirect.
Solution
Update the plugin.
Related
ubuntucve
ubuntucve
CVE-2013-4339
2013-09-12 00:00:00
debiancve
debiancve
CVE-2013-4339
2013-09-12 13:30:13
cvelist
cvelist
CVE-2013-4339
2013-09-12 10:00:00
seebug
seebug
WordPress็นๅถๅญ็ฌฆไธฒURL้ๅฎๅ้ๅถ็ป่ฟๆผๆด
2013-09-16 00:00:00
cve
cve
CVE-2013-4339
2013-09-12 13:30:13
nvd
nvd
CVE-2013-4339
2013-09-12 13:30:13
prion
prion
Design/Logic Flaw
2013-09-12 13:30:00
wpvulndb
wpvulndb
WordPress 3.0 - 3.6 Crafted String URL Redirect Restriction Bypass
2014-08-01 10:58:19
nessus
nessus
Fedora 18 : wordpress-3.6.1-1.fc18 (2013-16895)
2013-09-27 00:00:00
Fedora 20 : wordpress-3.6.1-1.fc20 (2013-16855)
2013-09-27 00:00:00
Fedora 19 : wordpress-3.6.1-1.fc19 (2013-16925)
2013-09-27 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: wordpress-3.6.1-1.fc20
2013-09-26 06:04:23
[SECURITY] Fedora 19 Update: wordpress-3.6.1-1.fc19
2013-09-26 06:04:43
[SECURITY] Fedora 19 Update: wordpress-3.8.3-1.fc19
2014-04-24 07:28:27
debian
debian
[SECURITY] [DSA 2757-1] wordpress security update
2013-09-14 09:13:38
securityvulns
securityvulns
[ MDVSA-2013:239 ] wordpress
2013-10-02 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2013-0285)
2022-01-28 00:00:00
Debian Security Advisory DSA 2757-1 (wordpress - several vulnerabilities)
2013-09-14 00:00:00
Debian: Security Advisory (DSA-2757-1)
2013-09-13 00:00:00
freebsd
freebsd
wordpress -- multiple vulnerabilities
2013-09-11 00:00:00
mageia
mageia
Updated wordpress and php-phpmailer packages fix security vulnerabilities
2013-09-19 13:45:04
osv
osv
wordpress - several
2013-09-14 00:00:00