CVE-2021-25111

English WordPress Admin < 1.5.2 - Unauthenticated Open Redirect

EPSS 1.9%CWE-601

The English WordPress Admin WordPress plugin before 1.5.2 does not validate the admin_custom_language_return_url before redirecting users o it, leading to an open redirect issue

Productos afectados

Unknown · English WordPress Admin

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://wpscan.com/vulnerability/af548fab-96c2-4129-b609-e24aad0b1fc4