CVE-2023-28786
MEDIUM WAF: Medium
CVSS 6.1
Published: 2023-12-29
CWE-601
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in SolidWP Solid Security – Password, Two Factor Authentication, and Brute Force Protection.This issue affects Solid Security – Password, Two Factor Authentication, and Brute Force Protection: from n/a through 8.1.4.
WAF Coverage Analysis
Open Redirect
Medium WAF Coverage
OWASP: A01:2021 Broken Access Control
941xxx - XSS / XXE
Affected Software
| Vendor | Product | Version |
|---|---|---|
| solidwp | solid_security | up to 8.1.4 |
References
- patchstack.com (Third Party Advisory)