VYPR
Unrated severityNVD Advisory· Published Sep 11, 2019· Updated Aug 21, 2024

CVE-2019-16220

CVE-2019-16220

Description

In WordPress before 5.2.3, validation and sanitization of a URL in wp_validate_redirect in wp-includes/pluggable.php could lead to an open redirect if a provided URL path does not start with a forward slash.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.