{
  "schema_version": "1.4.0",
  "id": "GHSA-7r28-mh98-v7q3",
  "modified": "2022-05-17T03:54:49Z",
  "published": "2022-05-17T03:54:49Z",
  "aliases": [
    "CVE-2014-1750"
  ],
  "details": "Open redirect vulnerability in nokia-mapsplaces.php in the Nokia Maps & Places plugin 1.6.6 for WordPress allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the href parameter to page/place.html.  NOTE: this was originally reported as a cross-site scripting (XSS) vulnerability, but this may be inaccurate.",
  "severity": [],
  "affected": [],
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-1750"
    },
    {
      "type": "WEB",
      "url": "https://plugins.trac.wordpress.org/browser/nokia-mapsplaces/trunk/nokia-mapsplaces.php?rev=841883"
    },
    {
      "type": "WEB",
      "url": "https://plugins.trac.wordpress.org/browser/nokia-mapsplaces/trunk/nokia-mapsplaces.php?rev=842384"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/oss-sec/2014/q1/173"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/oss-sec/2014/q1/181"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/65226"
    }
  ],
  "database_specific": {
    "cwe_ids": [],
    "severity": "MODERATE",
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2015-07-01T14:59:00Z"
  }
}