CVE-2015-4070

MEDIUM

WOW NEW Media Wow Moodboard Lite - Open Redirect

Title source: rule

Description

Open redirect vulnerability in the proxyimages function in wowproxy.php in the Wow Moodboard Lite plugin 1.1.1.1 for WordPress allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter.

References (2)

Scores

CVSS v3 6.1
EPSS 0.0016
EPSS Percentile 36.3%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-601
Status published
Products (2)
wow_new_media/wow_moodboard_lite
n/a/n/a
Published May 17, 2017
Tracked Since Feb 18, 2026