exploitDog

GHSA-gxrq-7hvq-53q3

Опубликовано: 15 фев. 2022

Источник: github

Github: Не прошло ревью

Описание

The WordPress Newsletter Plugin WordPress plugin before 1.6.5 does not validate the to parameter before redirecting the user to its given value, leading to an open redirect issue

The WordPress Newsletter Plugin WordPress plugin before 1.6.5 does not validate the to parameter before redirecting the user to its given value, leading to an open redirect issue

Ссылки

EPSS

Процентиль: 77%

0.01059

Низкий

CVE ID

Дефекты

CWE-601

Связанные уязвимости

CVE-2021-25033

CVSS3: 6.1

nvd

почти 4 года назад

The WordPress Newsletter Plugin WordPress plugin before 1.6.5 does not validate the to parameter before redirecting the user to its given value, leading to an open redirect issue

EPSS

Процентиль: 77%

0.01059

Низкий

CVE ID

Дефекты

CWE-601