CVE-2022-1583
N/A
N/A
Summary
The External Links in New Window / New Tab WordPress plugin before 1.43 does not ensure window.opener is set to "null" when links to external sites are clicked, which may enable tabnabbing attacks to occur.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Unknown | External Links in New Window / New Tab | 1.43 < 1.43 | affected |
Weaknesses
- CWE-1022: CWE-1022 Use of Web Link to Untrusted Target with window.opener Access
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.