1. Home
  2. CVE Database
  3. CVE-2023-37982
MEDIUM · 4.7

CVE-2023-37982

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for Salesforce and Contact Form 7, WPForms, Elementor, Ninja Forms.This issue affects Integration for Salesfo...

Vulnerability Description

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for Salesforce and Contact Form 7, WPForms, Elementor, Ninja Forms.This issue affects Integration for Salesforce and Contact Form 7, WPForms, Elementor, Ninja Forms: from n/a through 1.3.3.

CVSS Score

4.7

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality
LOW
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
CrmperksIntegration For Salesforce And Contact Form 7\, Wpforms\, Elementor\, Ninja Forms<= 1.3.3

Related Weaknesses (CWE)

CWE-601

References

FAQ

What is CVE-2023-37982?

CVE-2023-37982 is a vulnerability with a CVSS score of 4.7 (MEDIUM). URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for Salesforce and Contact Form 7, WPForms, Elementor, Ninja Forms.This issue affects Integration for Salesfo...

How severe is CVE-2023-37982?

CVE-2023-37982 has been rated MEDIUM with a CVSS base score of 4.7/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-37982?

Check the references section above for vendor advisories and patch information. Affected products include: Crmperks Integration For Salesforce And Contact Form 7\, Wpforms\, Elementor\, Ninja Forms.