← Back to CVEs
CVE-2015-10102
MEDIUM6.3
Description
A vulnerability, which was classified as critical, has been found in Freshdesk Plugin 1.7 on WordPress. Affected by this issue is some unknown functionality. The manipulation leads to open redirect. The attack may be launched remotely. Upgrading to version 1.8 is able to address this issue. The patch is identified as 2aaecd4e0c7c6c1dc4e6a593163d5f7aa0fa5d5b. It is recommended to upgrade the affected component. VDB-226118 is the identifier assigned to this vulnerability.
CVE Details
CVSS v3.1 Score6.3
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
Published4/17/2023
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
freshworks:freshdesk
Weaknesses (CWE)
CWE-601
References
https://github.com/wp-plugins/freshdesk-support/commit/2aaecd4e0c7c6c1dc4e6a593163d5f7aa0fa5d5b(cna@vuldb.com)
https://vuldb.com/?ctiid.226118(cna@vuldb.com)
https://vuldb.com/?id.226118(cna@vuldb.com)
https://github.com/wp-plugins/freshdesk-support/commit/2aaecd4e0c7c6c1dc4e6a593163d5f7aa0fa5d5b(af854a3a-2127-422b-91ae-364da2661108)
https://vuldb.com/?ctiid.226118(af854a3a-2127-422b-91ae-364da2661108)
https://vuldb.com/?id.226118(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.