Vulnerabilities > Webfactoryltd > External Links IN NEW Window NEW TAB

DATE CVE VULNERABILITY TITLE RISK
2022-05-30 CVE-2022-1582 Unspecified vulnerability in Webfactoryltd External Links in NEW Window / NEW TAB
The External Links in New Window / New Tab WordPress plugin before 1.43 does not properly escape URLs it concatenates to onclick event handlers, which makes Stored Cross-Site Scripting attacks possible.
network
low complexity
webfactoryltd
6.1
6.1
2022-05-30 CVE-2022-1583 Unspecified vulnerability in Webfactoryltd External Links in NEW Window / NEW TAB
The External Links in New Window / New Tab WordPress plugin before 1.43 does not ensure window.opener is set to "null" when links to external sites are clicked, which may enable tabnabbing attacks to occur.
network
low complexity
webfactoryltd
6.5
6.5