CVE-2025-30953
BaseFortify
Publication date: 2025-06-06
Last updated on: 2026-04-23
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-601 | The web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a redirect. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an Open Redirection issue in the WP Gravity Forms Salesforce plugin (up to version 1.4.7). It occurs because the plugin does not properly validate redirect URLs, allowing attackers to redirect users from a legitimate site to a malicious one. This can be exploited to facilitate phishing attacks by tricking users into visiting harmful websites after initially accessing a trusted site. [1]
How can this vulnerability impact me? :
The vulnerability can impact you by enabling attackers to redirect your users to malicious websites, potentially leading to phishing attacks. Since it requires no authentication to exploit, attackers can easily use it to deceive users and compromise their security. Although the severity is rated low, the risk of phishing and user trust loss is significant. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection of this Open Redirection vulnerability involves monitoring for suspicious redirect URLs originating from the WP Gravity Forms Salesforce plugin. Since the vulnerability allows attackers to redirect users to untrusted sites, network monitoring tools can be used to identify unexpected outbound redirects. Additionally, server-side malware scanning is recommended over plugin-based scanners, as malware can tamper with the latter. Specific commands are not provided in the available resources. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include implementing virtual patching (vPatching) offered by Patchstack, which automatically protects sites from this vulnerability without requiring an official plugin update. Users should also exercise caution regarding phishing risks associated with this vulnerability. In the absence of an official fix, professional incident response and server-side malware scanning are recommended if compromise is suspected. [1]