ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Ad Manager Plugin <=1.1.2 - Open Redirect

Product
Ad Manager
Description
This vulnerability is in the track-click.php. It allows the attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the "out" parameter.
Solution
Update the plugin.
Classification
Type Open Redirection
References
CVE Mitre
CVE
Name CVE-2014-8754
Versions
Affected In <= 1.1.2
Fixed In 1.1.3
Disclosure date
2014-10-13