CVE-2024-3032

MEDIUM NUCLEI

Themify Builder < 7.5.8 - Open Redirect

Title source: rule

Description

Themify Builder WordPress plugin before 7.5.8 does not validate a parameter before redirecting the user to its value, leading to an Open Redirect issue

Nuclei Templates (1)

WordPress Themify Builder < 7.5.8 - Open Redirect

MEDIUMby ritikchaddha

FOFA: body="wp-content/plugins/themify-builder/"

References (1)

[Exploit, Third Party Advisory] https://wpscan.com/vulnerability/d130a60c-c36b-4994-9b0e-e52cd7f99387/

Scores

CVSS v3 6.1

EPSS 0.0248

EPSS Percentile 85.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-601

Status published

Products (1)

themify/builder < 7.5.8

Published Jun 13, 2024

Tracked Since Feb 18, 2026