CVE-2026-1277

MEDIUM EXPLOITED NUCLEI

WordPress URL Shortify <1.12.1 - Open Redirect

Title source: llm

Exploitation Summary

CVE-2026-1277 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Sechunt3r. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2026-1277, an unauthenticated open redirect vulnerability in the URL Shortify WordPress plugin (versions <= 1.12.1). The exploit leverages insufficient validation of the 'redirect_to' parameter in the promotional dismissal handler to redirect users to arbitrary URLs.

Description

The URL Shortify plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 1.12.1 due to insufficient validation on the 'redirect_to' parameter in the promotional dismissal handler. This makes it possible for unauthenticated attackers to redirect users to potentially malicious sites via a crafted link.

Exploits (1)

github WORKING POC

by Sechunt3r · shellpoc

https://github.com/Sechunt3r/CVE-POCs/tree/main/CVE-2026-1277

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2026-1277, an unauthenticated open redirect vulnerability in the URL Shortify WordPress plugin (versions <= 1.12.1). The exploit leverages insufficient validation of the 'redirect_to' parameter in the promotional dismissal handler to redirect users to arbitrary URLs.

Classification

Working Poc 100%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: URL Shortify WordPress plugin <= 1.12.1

No auth needed

Prerequisites: WordPress site with vulnerable URL Shortify plugin installed

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Mar 16, 2026 Full analysis →

Nuclei Templates (1)

URL Shortify <= 1.12.1 - Open Redirect

MEDIUMVERIFIEDby Shivam Kamboj

References (3)

Core 3

Core References

Product

https://plugins.trac.wordpress.org/browser/url-shortify/tags/1.11.4/lite/includes/Promo.php#L64

Product

https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3451740%40url-shortify&old=3445491%40url-shortify&sfp_email=&sfph_mail=#file1049

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/c7c1dc51-47ca-4b2f-9ff9-275bd8b1c106?source=cve

Scores

CVSS v3 4.7

EPSS 0.0037

EPSS Percentile 59.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

VulnCheck KEV 2026-04-02

CWE

CWE-601

Status published

Products (1)

kaizencoders/URL Shortify – Simple and Easy URL Shortener < 1.12.1

Published Feb 18, 2026

Tracked Since Feb 18, 2026