WordPress Plugin Vulnerabilities
Ninja Popups <= 4.7.5 - Unauthenticated Open Redirect
Description
The plugin does not properly validate a redirect url, allowing unauthenticated attackers to redirect users to potentially malicious sites by clicking a link.
Affects Plugins
References
Classification
Type
REDIRECT
OWASP top 10
CWE
CVSS
Miscellaneous
Original Researcher
Dave Jong
Verified
No
WPVDB ID
Timeline
Publicly Published
2023-07-18 (about 10 months ago)
Added
2023-08-10 (about 9 months ago)
Last Updated
2023-08-10 (about 9 months ago)