Description
Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having user access a specially crafted URL.
Remediation
References
Related Vulnerabilities
WordPress Plugin Print My Blog-Print, PDF, & eBook Converter Server-Side Request Forgery (1.6.5)
OpenSSL Resource Management Errors Vulnerability (CVE-2015-1792)
WordPress Plugin Wordpress Forms Multiple Vulnerabilities (0.2.7.1)
WordPress Plugin WP Survey Plus Security Bypass (1.0)
WordPress Plugin 404 to 301-Redirect, Log and Notify 404 Errors Cross-Site Scripting (2.3.1)