WordPress Plugin Vulnerabilities

Ad Manager <= 1.1.2 - Open Redirection

Description

The wordpress-admanager WordPress plugin was affected by an Open Redirection security vulnerability.

Affects Plugins

Plugin icon
wordpress-admanager
No known fix

References

CVE
CVE-2014-8754
URL
https://packetstormsecurity.com/files/#129290/
URL
https://codecanyon.net/item/wordpress-admanager/544421
URL
https://seclists.org/fulldisclosure/2014/Nov/93
URL
https://web.archive.org/web/20161130062013/http://tetraph.com/security/cves/cve-2014-8754-wordpress-ad-manager-plugin-dest-redirect-privilege-escalation/
URL
https://exchange.xforce.ibmcloud.com/vulnerabilities/98990

Classification

Type
REDIRECT
OWASP top 10
A1: Injection
CWE
CWE-601

Miscellaneous

Verified
No
WPVDB ID
c3f4f533-6470-4c76-9a81-581c920749d4

Timeline

Publicly Published
2014-11-26 (about 9 years ago)
Added
2019-08-22 (about 4 years ago)
Last Updated
2019-12-28 (about 4 years ago)

Other

Published
Title
Published
2023-12-27
Title
Calculated Fields Form < 1.2.29 - Contributor+ Open Redirect
Published
2020-11-27
Title
Age Gate < 2.13.5 - Unauthenticated Open Redirect
Published
2016-02-02
Title
WordPress 3.7-4.4.1 - Open Redirect
Published
2023-01-06
Title
miniOrange WordPress SAML SSO Standard < 16.0.8 - Open Redirect in SSO login
Published
2016-04-25
Title
The Events Calendar <= 4.1.1 - Open Redirect