WordPress Plugins Themes Submit Login Register

Proof of Concept

http://www.example.com/?wptouch_switch=mobile&redirect=http%3A%2F%2Fdomain[.com]

Affects Plugin

wptouch fixed in version 3.7

References

URL	https://wordpress.org/plugins/wptouch/changelog/

Classification

Type	REDIRECT
OWASP Top 10	A10: Unvalidated Redirects and Forwards
CWE	CWE-601

Miscellaneous

Submitter	ethicalhack3r
Submitter Website	https://dewhurstsecurity.com/
Submitter Twitter	ethicalhack3r
Views	3891
Verified	No
WPVDB ID	7837

Timeline

Publicly Published	2015-01-29 (over 4 years ago)
Added	2015-03-09 (over 4 years ago)
Last Updated	2015-05-15 (about 4 years ago)