CVE-2024-1849 Information

Description

The WP Customer Reviews WordPress plugin before 3.7.1 does not validate a parameter allowing contributor and above users to redirect a page to a malicious URL

Reference

https://wpscan.com/vulnerability/e6d9fe28-def6-4f25-9967-a77f91899bfe/