Published: 12/01/2013 Updated: 14/01/2013

CVSS v2 Base Score: 5.8 | Impact Score: 4.9 | Exploitability Score: 8.6

VMScore: 590

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N

Open redirect vulnerability in age-verification.php in the Age Verification plugin 0.4 and previous versions for WordPress allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect_to parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
age_verification_project age_verification

# Exploit Title: Wordpress Age Verification plugin <= 04 Open Redirect # Date: 2012/01/10 # Dork: inurl:wp-content/plugins/age-verification/age-verificationphp # Author: Gianluca Brindisi (gATbrindisi @gbrindisi brindisi/g/) # Software Link: downloadswordpressorg/plugin/age-verificationzip # Version: 04 1) Via GET: http: ...

source: wwwsecurityfocuscom/bid/51357/info WordPress Age Verification plugin is prone to a URI-redirection vulnerability because the application fails to properly sanitize user-supplied input A successful exploit may aid in phishing attacks; other attacks are possible WordPress Age Verification plugin 04 and prior versions are vulner ...

CWE-20 http://www.securityfocus.com/bid/51357 http://www.osvdb.org/82584 http://www.exploit-db.com/exploits/18350 https://nvd.nist.gov https://www.exploit-db.com/exploits/18350/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-6499

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect