Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
WordPress URL Redirection to Untrusted Site (Open Redirect) Vulnerability - CVE-2019-16220 - Vulnerability Database
WordPress

WordPress URL Redirection to Untrusted Site (Open Redirect) Vulnerability - CVE-2019-16220

Medium
Reference: CVE-2019-16220
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2019-16220
Title: WordPress URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Overview:

In WordPress before 5.2.3 validation and sanitization of a URL in wp_validate_redirect in wp-includes/pluggable.php could lead to an open redirect if a provided URL path does not start with a forward slash.