CVE-2023-51517

CWE-601 — Open Redirect3 documents3 sources

Severity

5.4MEDIUM

EPSS

0.1%

top 68.28%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Codepeople Calculated Fields Form

Timeline

PublishedDec 29

Description

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CodePeople Calculated Fields Form.This issue affects Calculated Fields Form: from n/a through 1.2.28.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:NExploitability: 2.3 | Impact: 1.4

Affected Packages2 packages

▶CVEListV5codepeople/calculated_fields_formn/a — 1.2.28

▶NVDcodepeople/calculated_fields_form1.2.28

🔴Vulnerability Details

GHSA

GHSA-vq7f-4cc7-hx6q: URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CodePeople Calculated Fields Form↗2023-12-29

▶

CVEList

WordPress Calculated Fields Form Plugin <= 1.2.28 is vulnerable to Open Redirection↗2023-12-29

▶