CVE-2017-8875

MEDIUM

Codection Clean Login - CSRF

Title source: rule

Description

CSRF in the Clean Login plugin before 1.8 for WordPress allows remote attackers to change the login redirect URL or logout redirect URL.

References (2)

Scores

CVSS v3 6.5
EPSS 0.0013
EPSS Percentile 32.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Details

CWE
CWE-352
Status published
Products (2)
codection/clean_login
n/a/n/a
Published May 10, 2017
Tracked Since Feb 18, 2026