Cross-Site Scripting (XSS) vulnerability found by LS Team in WordPress Easy Redirect Manager plugin (version 2.18.18).
26 January 2019 - we were unable to find a patched version of this plugin. WordPress plugin repository message: "This plugin was closed on January 14, 2019 and is no longer available for download.". We recommend you to deactivate and remove this plugin from your WordPress site.
Type XSS (Cross Site Scripting) OWASP Top 10 A3: Cross Site Scripting (XSS)