Platform
php
Component
xenforo
Fixed in
2.2.17
2.3.1
CVE-2024-58342 describes an open redirect vulnerability discovered in XenForo, a popular forum software. This flaw allows attackers to redirect users to arbitrary external websites through specially crafted URLs, potentially leading to phishing attacks or the spread of malware. The vulnerability affects versions 0 through 2.3.1 of XenForo, and a fix is available in version 2.3.1.
An attacker can exploit this open redirect vulnerability by crafting a malicious URL that, when clicked by a user, redirects them to a website controlled by the attacker. This redirection can be subtle, making it difficult for users to detect they are being redirected to a malicious site. The attacker could then use this redirection to steal user credentials through phishing, deliver malware, or perform other malicious actions. The blast radius extends to all XenForo users who click on these crafted URLs, and the potential for widespread impact is significant, especially if the forum has a large user base.
This vulnerability is not currently listed on KEV or EPSS. Public proof-of-concept exploits are not widely available, suggesting a low probability of immediate widespread exploitation. The vulnerability was published on 2026-04-01, and active campaigns are not currently known.
Exploit Status
EPSS
0.03% (8% percentile)
CISA SSVC
CVSS Vector
The primary mitigation for CVE-2024-58342 is to upgrade XenForo to version 2.3.1 or later, which contains the fix for this vulnerability. If upgrading immediately is not possible, consider implementing a temporary workaround by carefully scrutinizing all incoming URLs for suspicious redirect targets. While a WAF might offer some protection, it's not a reliable solution for open redirects. Thoroughly test the upgrade process in a staging environment before applying it to the production environment to avoid any unexpected disruptions.
Update XenForo to version 2.2.17 or 2.3.1, or later, to fix the open redirect vulnerability. This will prevent attackers from redirecting users to malicious external sites through manipulated URLs.
Vulnerability analysis and critical alerts directly to your inbox.
CVE-2024-58342 is a vulnerability in XenForo versions 0–2.3.1 that allows attackers to redirect users to malicious websites via crafted URLs. It's classified as a Medium severity issue.
If you are running XenForo version 0 through 2.3.1, you are potentially affected by this vulnerability. Upgrade to version 2.3.1 or later to mitigate the risk.
The recommended fix is to upgrade XenForo to version 2.3.1 or a later version. Test the upgrade in a staging environment first.
Currently, there are no confirmed reports of active exploitation of CVE-2024-58342, but it's crucial to apply the fix proactively.
Please refer to the official XenForo security advisory for detailed information and updates regarding CVE-2024-58342: [https://xenforo.com/security/advisories/]
Upload your dependency file and we'll tell you instantly if this and other CVEs hit you.