Unauthenticated Open Redirect vulnerability found by Carl Clegg in WordPress furikake plugin (version 0.1.0). Vulnerable via furikake-redirect parameter allows redirecting to an attacker controlled page.
We are waiting for information from the vendor.