CVE-2024-58342

XenForo before 2.2.17 and 2.3.1 allows open redirect via a specially crafted URL. The getDynamicRedirect() function does not adequately validate the redirect target, allowing attackers to redirect users to arbitrary external sites using crafted URLs containing newlines, user credentials, or host mismatches.

CVSS v3 6.3 MEDIUM

6.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 3.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://www.vulncheck.com/advisories/xenforo-open-redirect-via-getdynamicredirect	Third Party Advisory
https://xenforo.com/community/threads/xenforo-2-2-17-released-security-fix.227797/	Release Notes

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:xenforo:xenforo::::::::
	cpe:2.3:a:xenforo:xenforo:2.3.0:::::::*

History

01 Apr 2026, 18:54

Type	Values Removed	Values Added
CPE		cpe:2.3:a:xenforo:xenforo:::::::: cpe:2.3:a:xenforo:xenforo:2.3.0:::::::*
Summary		(es) XenForo anterior a 2.2.17 y 2.3.1 permite redirección abierta a través de una URL especialmente diseñada. La función getDynamicRedirect() no valida adecuadamente el objetivo de la redirección, permitiendo a los atacantes redirigir a los usuarios a sitios externos arbitrarios utilizando URLs diseñadas que contienen saltos de línea, credenciales de usuario o discrepancias de host.
First Time		Xenforo Xenforo xenforo
References	~~() https://www.vulncheck.com/advisories/xenforo-open-redirect-via-getdynamicredirect -~~	() https://www.vulncheck.com/advisories/xenforo-open-redirect-via-getdynamicredirect - Third Party Advisory
References	~~() https://xenforo.com/community/threads/xenforo-2-2-17-released-security-fix.227797/ -~~	() https://xenforo.com/community/threads/xenforo-2-2-17-released-security-fix.227797/ - Release Notes

01 Apr 2026, 01:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-04-01 01:16

Updated : 2026-04-01 18:54

NVD link : CVE-2024-58342

Mitre link : CVE-2024-58342

CVE.ORG link : CVE-2024-58342

JSON object : View

Products Affected

xenforo

xenforo

CWE

CWE-601

URL Redirection to Untrusted Site ('Open Redirect')

{"id": "CVE-2024-58342", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "disclosure@vulncheck.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 3.4, "exploitabilityScore": 2.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 2.8}], "cvssMetricV40": [{"type": "Secondary", "source": "disclosure@vulncheck.com", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 5.3, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "PASSIVE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "LOW", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "LOW", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "LOW", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2026-04-01T01:16:39.100", "references": [{"url": "https://www.vulncheck.com/advisories/xenforo-open-redirect-via-getdynamicredirect", "tags": ["Third Party Advisory"], "source": "disclosure@vulncheck.com"}, {"url": "https://xenforo.com/community/threads/xenforo-2-2-17-released-security-fix.227797/", "tags": ["Release Notes"], "source": "disclosure@vulncheck.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "disclosure@vulncheck.com", "description": [{"lang": "en", "value": "CWE-601"}]}], "descriptions": [{"lang": "en", "value": "XenForo before 2.2.17 and 2.3.1 allows open redirect via a specially crafted URL. The getDynamicRedirect() function does not adequately validate the redirect target, allowing attackers to redirect users to arbitrary external sites using crafted URLs containing newlines, user credentials, or host mismatches."}, {"lang": "es", "value": "XenForo anterior a 2.2.17 y 2.3.1 permite redirecci\u00f3n abierta a trav\u00e9s de una URL especialmente dise\u00f1ada. La funci\u00f3n getDynamicRedirect() no valida adecuadamente el objetivo de la redirecci\u00f3n, permitiendo a los atacantes redirigir a los usuarios a sitios externos arbitrarios utilizando URLs dise\u00f1adas que contienen saltos de l\u00ednea, credenciales de usuario o discrepancias de host."}], "lastModified": "2026-04-01T18:54:10.510", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:xenforo:xenforo:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFDE450D-DF5A-40E2-BA7E-79B4BDD2EC5A", "versionEndExcluding": "2.2.17"}, {"criteria": "cpe:2.3:a:xenforo:xenforo:2.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "358AAB65-82E9-4D1B-B3AA-6ABE7ACFABE2"}], "operator": "OR"}]}], "sourceIdentifier": "disclosure@vulncheck.com"}