QwikSec

Security Database

CVE

CWE

Training

CVE-2015-5461

Published: Jul 8, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

Open redirect vulnerability in the Redirect function in stageshow_redirect.php in the StageShow plugin before 5.0.9 for WordPress allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://wordpress.org/plugins/stageshow/changelog/

x_refsource_CONFIRM

http://packetstormsecurity.com/files/132553/WordPress-StageShow-5.0.8-Open-Redirect.html

x_refsource_MISC

20150705 Open redirect vulnerability in StageShow Wordpress plugin v5.0.8

mailing-list

x_refsource_FULLDISC

https://wpvulndb.com/vulnerabilities/8073

x_refsource_MISC

vdb-entry

x_refsource_BID

https://plugins.trac.wordpress.org/changeset/1165310/

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.