CVE-2017-6815 : In WordPress before 4.7.3 (wp-includes/pluggable.php), control characters can tr

In WordPress before 4.7.3 (wp-includes/pluggable.php), control characters can trick redirect URL validation.

Published 2017-03-12 01:59:00

Updated 2019-03-19 12:43:01

Source MITRE

View at NVD, CVE.org

Vulnerability category: Input validation

Products affected by CVE-2017-6815

Debian » Debian Linux » Version: 8.0
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Matching versions
Debian » Debian Linux » Version: 9.0
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Matching versions
Wordpress » Wordpress
Versions up to, including, (<=) 4.7.2
cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
Matching versions

Top countries where our scanners detected CVE-2017-6815

Top open port discovered on systems with this issue 80

IPs affected by CVE-2017-6815 903

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2017-6815!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

EPSS FAQ

5.72%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 90 %

Percentile, the proportion of vulnerabilities that are scored at or less

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:N	8.6	4.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: None
6.1	MEDIUM	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	2.8	2.7	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Changed Confidentiality: Low Integrity: Low Availability: None

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: nvd@nist.gov (Primary)

http://www.debian.org/security/2017/dsa-3815

Debian -- Security Information -- DSA-3815-1 wordpress
Third Party Advisory

CVEs referencing this url
https://wordpress.org/news/2017/03/wordpress-4-7-3-security-and-maintenance-release/

News – WordPress 4.7.3 Security and Maintenance Release – WordPress.org
Patch;Release Notes;Vendor Advisory

CVEs referencing this url
http://www.securitytracker.com/id/1037959

WordPress Multiple Flaws Let Remote Users Deny Service, Bypass URL Redirect Validation, Conduct Cross-Site Scripting Attacks, and Conduct Cross-Site Request Forgery Attacks - SecurityTracker
Third Party Advisory;VDB Entry

CVEs referencing this url
http://www.securityfocus.com/bid/96600

WordPress Prior to 4.7.3 URL Redirection Vulnerability
Third Party Advisory;VDB Entry
https://codex.wordpress.org/Version_4.7.3

Version 4.7.3 | WordPress.org
Patch;Vendor Advisory

CVEs referencing this url
https://github.com/WordPress/WordPress/commit/288cd469396cfe7055972b457eb589cea51ce40e

Strip control characters before validating redirect. · WordPress/WordPress@288cd46 · GitHub
Issue Tracking;Patch;Third Party Advisory
https://wpvulndb.com/vulnerabilities/8766

WordPress 2.8.1-4.7.2 - Control Characters in Redirect URL Validation
Patch;Third Party Advisory

Jump to