CVE-2017-1000434

Publication date

2018-01-02 23:00:00

Family

mitre

State

PUBLISHED

Description

Wordpress plugin Furikake version 0.1.0 is vulnerable to an Open Redirect The furikake-redirect parameter on a page allows for a redirect to an attacker controlled page classes/Furigana.php: header(location:.urldecode($_GET[furikake-redirect]));