CVE-2015-10104

Name of the Vulnerable Software and Affected Versions Icons for Features Plugin version 1.0.0

Description A problematic issue has been found in the Icons for Features Plugin on WordPress, affecting some unknown functionality of the file classes/class-icons-for-features-admin.php. The manipulation of the redirect url argument leads to open redirect. The attack may be launched remotely. Upgrading to version 1.0.1 is able to address this issue.

Recommendations For Icons for Features Plugin version 1.0.0, upgrade to version 1.0.1 to address the issue. As a temporary workaround, consider restricting the manipulation of the redirect url argument to minimize the risk of exploitation.