CVE-2017-6815

Published March 12th, 2017

View on NVD ↗

CVSS v3

N/A

CVSS v2

5.8

MEDIUM

Affected

PROJECT

Description

In WordPress before 4.7.3 (wp-includes/pluggable.php), control characters can trick redirect URL validation.

WordPress/WordPress

WordPress, Git-ified. This repository is just a mirror of the WordPress subversion repository. Please do not send pull requests. Submit pull requests to https://github.com/WordPress/wordpress-develop and patches to https://core.trac.wordpress.org/ instead.

GitHub

21.2K