CVE-2015-4070

Name of the Vulnerable Software and Affected Versions Wow Moodboard Lite plugin version 1.1.1.1

Description The issue allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter. This is related to an open redirect vulnerability in the proxyimages function in wowproxy.php.

Recommendations For Wow Moodboard Lite plugin version 1.1.1.1, consider disabling the proxyimages function in wowproxy.php until a patch is available to prevent exploitation. Avoid using the url parameter in the affected function to minimize the risk of redirection attacks.