Description
WordPress Plugin WP Symposium is prone to an open redirect vulnerability because the application fails to properly sanitize user-supplied input. Exploiting this issue may allow attackers to redirect users to arbitrary web sites and conduct phishing attacks; other attacks are also possible. WordPress Plugin WP Symposium version 13.12 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 14.02 or latest
References
Related Vulnerabilities
Joomla Other Vulnerability (CVE-2013-1453)
Lighttpd Other Vulnerability (CVE-2007-3950)
Internet Information Services Other Vulnerability (CVE-2002-0149)
MySQL Deserialization of Untrusted Data Vulnerability (CVE-2019-14893)
Liferay Portal Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2022-42129)