Description
Before version 4.8.2, WordPress was susceptible to an open redirect attack in wp-admin/edit-tag-form.php and wp-admin/user-edit.php.
Remediation
References
Related Vulnerabilities
Apache HTTP Server CVE-2016-5387 Vulnerability (CVE-2016-5387)
PostgreSQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32028)
OpenSSL Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2018-5407)
PHP Improper Input Validation Vulnerability (CVE-2016-10397)
WordPress Plugin Toggle The Title Cross-Site Scripting (1.4)