VYPR

Furikake

by WordPress

CVEs (1)

  • CVE-2017-1000434MedJan 2, 2018
    risk 0.40cvss 6.1epss 0.01

    Wordpress plugin Furikake version 0.1.0 is vulnerable to an Open Redirect The furikake-redirect parameter on a page allows for a redirect to an attacker controlled page classes/Furigana.php: header('location:'.urldecode($_GET['furikake-redirect']));