The WP Customer Reviews plugin, used for WordPress, has a security issue that allows for potentially harmful redirects. This problem affects all versions up to and including 3.7.0. The plugin does not properly check the Business Name field, making it possible for attackers with contributor-level access or higher to insert these redirects.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
