EPSS
Percentile
77.6%
This vulnerability is in stageshow_redirect.php in the “Redirect” function. It allows an attacker to redirect users to arbitrary web sites and conduct phishing attacks in the “url” parameter.
Update the plugin.
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5461