WordPress 2.7.0-4.7.4 - Insufficient Redirect Validation

Affects WordPresses

fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.6.6
fixed in version 4.6.6
fixed in version 4.6.6
fixed in version 4.6.6
fixed in version 4.6.6
fixed in version 4.6.6
fixed in version 4.5.9
fixed in version 4.5.9
fixed in version 4.5.9
fixed in version 4.5.9
fixed in version 4.5.9
fixed in version 4.5.9
fixed in version 4.5.9
fixed in version 4.5.9
fixed in version 4.5.9
fixed in version 4.4.10
fixed in version 4.4.10
fixed in version 4.4.10
fixed in version 4.4.10
fixed in version 4.4.10
fixed in version 4.4.10
fixed in version 4.4.10
fixed in version 4.4.10
fixed in version 4.4.10
fixed in version 4.4.10
fixed in version 4.3.11
fixed in version 4.3.11
fixed in version 4.3.11
fixed in version 4.3.11
fixed in version 4.3.11
fixed in version 4.3.11
fixed in version 4.3.11
fixed in version 4.3.11
fixed in version 4.3.11
fixed in version 4.3.11
fixed in version 4.3.11
fixed in version 4.2.15
fixed in version 4.2.15
fixed in version 4.2.15
fixed in version 4.2.15
fixed in version 4.2.15
fixed in version 4.2.15
fixed in version 4.2.15
fixed in version 4.2.15
fixed in version 4.2.15
fixed in version 4.2.15
fixed in version 4.2.15
fixed in version 4.2.15
fixed in version 4.2.15
fixed in version 4.2.15
fixed in version 4.2.15
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.1.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 4.0.18
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.9.19
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.8.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 3.7.21
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5
fixed in version 4.7.5

References

CVE 2017-9066
URL https://github.com/WordPress/WordPress/commit/76d77e927bb4d0f87c7262a50e28d84e01fd2b11
URL https://wordpress.org/news/2017/05/wordpress-4-7-5/

Classification

Type REDIRECT
CWE CWE-601

Miscellaneous

Submitter ethicalhack3r
Submitter Website https://dewhurstsecurity.com/
Submitter Twitter ethicalhack3r
Views 10640
Verified No
WPVDB ID 8815

Timeline

Publicly Published 2017-05-16 (over 2 years ago)
Added 2017-05-17 (over 2 years ago)
Last Updated 2019-11-01 (12 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin