The WP Directory Kit plugin for WordPress has a security flaw in versions up to version 1.1.9. Attackers can take advantage of this flaw to send users to dangerous websites without the user’s knowledge. This happens because the plugin does not properly check the website address that it is being asked to send the user to.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
