CVE-2013-2694

Currently unrated

Key Information:

Vendor
Wordpress
Status
WP Symposium
Vendor
CVE Published:
28 March 2014

Summary

Open redirect vulnerability in invite.php in the WP Symposium plugin 13.04 for WordPress allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the u parameter.

References

http://www.securityfocus.com/bid/59045
vdb-entryx_refsource_BID
http://osvdb.org/92274
vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/52925
third-party-advisoryx_refsource_SECUNIA

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.