WordPress is vulnerable to open redirect attacks. It is possible because the library does not properly validate the external URL in wp_http_referer
in wp-admin/edit-tag-form.php
and wp-admin/user-edit.php
, allowing attackers to redirect users to a different website.