Solutions Ad Manager Open Redirect Vulnerability
Vulnerability
A vulnerability allowing open redirection has been identified in the Solutions Ad Manager plugin for WordPress, affecting all versions through 1.0.0. The issue arises from inadequate validation of the redirect URL provided via the 'sam-redirect-to' parameter. This flaw enables unauthenticated attackers to redirect users to potentially harmful sites, provided they can successfully persuade the users to take a specific action.
Impact
Exploitation of this vulnerability could lead to unauthorized redirection of users to malicious websites, potentially facilitating phishing attacks or the distribution of malware.
Reproduction
To reproduce this vulnerability, an unauthenticated user can send a request to the WordPress site with the 'sam-redirect-to' parameter set to a URL of their choice. If the request is processed by the Solutions Ad Manager plugin, the user will be redirected to the specified URL. This can be done by creating a post that includes a link with the 'sam-redirect-to' parameter, or by using a shortcode that triggers the redirect.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.