Description
A open redirect vulnerability exists in Action Pack >= 6.0.0 that could allow an attacker to craft a "X-Forwarded-Host" headers in combination with certain "allowed host" formats can cause the Host Authorization middleware in Action Pack to redirect users to a malicious website.
Remediation
References
Related Vulnerabilities
WordPress Plugin Export Post Info Cross-Site Scripting (1.1.0)
WordPress Plugin oQey Gallery 'tbpv_domain' Parameter Cross-Site Scripting (0.2)
WordPress Plugin Contact Bank-Contact Form Builder for WordPress Cross-Site Scripting (3.0.30)
WordPress Plugin Gravity Upload Ajax Arbitrary File Upload (1.1)
Drupal Insufficient Verification of Data Authenticity Vulnerability (CVE-2016-9450)