Security for everyone

CVE-2021-24165 Scanner

Detects 'Open Redirect' vulnerability in Ninja Forms plugin for WordPress affects v. before 3.4.34.

SCAN NOW

Short Info


Level

Medium

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Domain, Ipv4

Parent Category

CVE-2021-24165 Scanner Detail

Ninja Forms is a popular WordPress plugin that provides customizable forms for websites. It is used by businesses and bloggers alike to create contact forms, surveys, registration forms, and more. The plugin is highly user-friendly, allowing even those with little technical knowledge to create professional-looking forms with ease.

However, recently, a critical vulnerability was discovered in Ninja Forms. The CVE-2021-24165 vulnerability was spotted in the wp_ajax_nf_oauth_connect AJAX action. It left the plugin open to open redirects, which attackers could use to redirect users to malicious sites. This could lead to phishing attacks, identity theft, or other dangerous activities.

If exploited, the vulnerability posed a significant threat to website owners and users alike. Sensitive information such as usernames, passwords, and other private details could be compromised. Furthermore, redirects to malicious websites could lead to malware infections, ransomware attacks, and other malicious activities.

At SecurityForEveryone, we take digital security seriously. Our platform provides users with up-to-date information on known vulnerabilities, security threats, and other digital security issues. By using our pro features, businesses can keep their assets safe and secure, protecting themselves and their customers from potential harm. Don't leave your digital security to chance - sign up for SecurityForEveryone today.

 

REFERENCES

cyber security services for everyone one. Free security tools, continuous vulnerability scanning and many more.
Try it yourself,
control security posture