3 matches found
CVE-2022-1583
The External Links in New Window / New Tab WordPress plugin before 1.43 does not ensure window.opener is set to "null" when links to external sites are clicked, which may enable tabnabbing attacks to occur...
CVE-2022-1583
The CVE-2022-1583 entry describes a tabnabbing vulnerability in the WordPress plugin External Links in New Window / New Tab (versions before 1.43). The root cause is that clicking external links does not ensure window.opener is set to null, allowing a newly opened tab to potentially manipulate th...
CVE-2022-1583 External Links in New Window / New Tab < 1.43 - Tabnabbing
The External Links in New Window / New Tab WordPress plugin before 1.43 does not ensure window.opener is set to "null" when links to external sites are clicked, which may enable tabnabbing attacks to occur...