Medium severity6.1NVD Advisory· Published Dec 3, 2018· Updated Jun 17, 2026
CVE-2018-19796
CVE-2018-19796
Description
An open redirect in the Ninja Forms plugin before 3.3.19.1 for WordPress allows Remote Attackers to redirect a user via the lib/StepProcessing/step-processing.php (aka submissions download page) redirect parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<3.3.19.1+ 1 more
- (no CPE)range: <3.3.19.1
- (no CPE)range: <3.3.19.1
Patches
Vulnerability mechanics
References
3- plugins.trac.wordpress.org/changeset/1982808/ninja-forms/trunk/lib/StepProcessing/step-processing.phpnvdExploitThird Party Advisory
- wordpress.org/plugins/ninja-forms/nvdProductThird Party Advisory
- wpvulndb.com/vulnerabilities/9154nvd
News mentions
0No linked articles in our index yet.