External Links In New Window / New Tab
external_links_in_new_window_/_new_tab
Vendor: Webfactoryltd • 2 CVEs
CVEs (2)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Webfactoryltd 1External Links In New Window / New Tab Nov 21, 2024 May 30, 2022 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 The External Links in New Window / New Tab WordPress plugin before 1.43 does not ensure window.opener is set to "null" when links to external sites are clicked, which may enable tabnabbing attacks to occur. |
1Webfactoryltd 1External Links In New Window / New Tab Nov 21, 2024 May 30, 2022 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 The External Links in New Window / New Tab WordPress plugin before 1.43 does not properly escape URLs it concatenates to onclick event handlers, which makes Stored Cross-Site Scripting attacks possible. |