External Links In New Window / New Tab
Approved changes feed: RSS · Atom
cpe:2.3:a:webfactoryltd:external_links_in_new_window_\/_new_tab:*:*:*:*:*:wordpress:*:*
part: a version: * update: *
| Vendor | Webfactoryltd (42e366d7-a42e-568c-8deb-d59744fb0f59) |
|---|---|
| Product | External Links In New Window / New Tab (58b4cff1-90e3-5947-9164-07e73983a5aa) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2022-1583 |
vulnerable | 2026-06-03 14:45:59.185258 |
External Links in New Window / New Tab < 1.43 - Tabnabbing
The External Links in New Window / New Tab WordPress plugin before 1.43 does not ensure window.opener is set to "null" when links to external sites are clicked, which may enable tabnabbing attacks to occur.
Published: 2022-05-30T08:36:03.000Z
Updated: 2024-08-03T00:10:03.760Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-1582 |
vulnerable | 2026-06-03 14:45:59.184840 |
External Links in New Window / New Tab < 1.43 - Unauthenticated Stored Cross-Site Scripting
The External Links in New Window / New Tab WordPress plugin before 1.43 does not properly escape URLs it concatenates to onclick event handlers, which makes Stored Cross-Site Scripting attacks possible.
Published: 2022-05-30T08:36:01.000Z
Updated: 2024-08-03T00:10:03.636Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.