CVE-2015-4070

MEDIUM

Wow Moodboard Lite 1.1.1.1 - Open Redirect via URL Parameter

Title source: llm
STIX 2.1

Description

Open redirect vulnerability in the proxyimages function in wowproxy.php in the Wow Moodboard Lite plugin 1.1.1.1 for WordPress allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/75047
Third Party Advisory x_refsource_misc
http://www.vapid.dhs.org/advisory.php?v=120

Scores

CVSS v3 6.1
EPSS 0.0141
EPSS Percentile 69.1%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-601
Status published
Products (1)
wow_new_media/wow_moodboard_lite 1.1.1
Published May 17, 2017
Tracked Since Feb 18, 2026