QID 150389

Date Published: 2021-11-22

QID 150389: WordPress Ninja-Forms Plugin - Authenticated Open Redirect (CVE-2021-24165)

Ninja Forms is a free form builder plugin for WordPress, it provides users the ability to create custom forms using drag and drop capabilities.

In affected versions of Ninja Forms WordPress plugin a Open redirect vulnerability exists due to unvalidated user input supplied to redirect parameter.

Affected versions:
Ninja Forms versions prior to 3.4.34

QID Detection Logic (Authenticated):
This QID sends a HTTP GET request to "wp-admin/admin-ajax.php" with client_id, redirect and AJAX action parameters and based on the response confirms if the target is vulnerable.

Successful exploitation could allow attackers to trick a user into visiting a specially crafted link which would redirect them to an arbitrary malicious external URL.

  • CVSS V3 rated as High - 6.1 severity.
  • CVSS V2 rated as Medium - 5.8 severity.
    • Solution
    Customers are advised to upgrade to Ninja Forms version 3.4.34 or later versions to remediate this vulnerability. For more information related to this vulnerability please refer Wordfence Blog
    Vendor References

    CVEs related to QID 150389

    CVE-2021-24165 |
    Software Advisories
    Advisory ID Software Component Link
    Ninja Forms URL Logo ninjaforms.com/docs/installation/
    By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].