ThreatPress

WordPress Vulnerability Database

Back

WordPress Digital Climate Strike WP plugin <= 1.0.0 - Redirect to malicious websites

Product
Digital Climate Strike WP
Description
Redirect to malicious websites found by Steve Perry in WordPress Digital Climate Strike WP plugin (versions <= 1.0.0).
Solution
2021-01-21 - we were unable to find a patched version of this plugin. WordPress.org notification: "This plugin has been closed as of January 20, 2021 and is not available for download. This closure is temporary, pending a full review."
Classification
Type Unknown
OWASP Top 10 A1: Injection
References
Vulnerability details
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In <= 1.0.0
Disclosure date
2021-01-20
Credits
Steve Perry