← Back to CVE List
CVE-2021-25033
The WordPress Newsletter Plugin WordPress plugin before 1.6.5 does not validate the to parameter before redirecting the user to its given value, leading to an open redirect issue
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt