The FoxyPress plugin for WordPress is not safe to use in versions up to 0.4.2.7. Hackers can take advantage of this vulnerability by redirecting unsuspecting users to malicious sites if they can get them to do something. The issue is caused by the lack of proper validation for the redirect URL supplied through the ‘url’ parameter.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
