Medium severity6.1NVD Advisory· Published Feb 14, 2022· Updated Jun 17, 2026
CVE-2021-25033
CVE-2021-25033
Description
The WordPress Newsletter Plugin WordPress plugin before 1.6.5 does not validate the to parameter before redirecting the user to its given value, leading to an open redirect issue
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <1.6.5
Patches
Vulnerability mechanics
References
2- plugins.trac.wordpress.org/changeset/2639592nvdPatchThird Party Advisory
- wpscan.com/vulnerability/c2d2384c-41b9-4aaf-b918-c1cfda58af5cnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.