CVE-2024-22308

Name of the Vulnerable Software and Affected Versions Simple Membership versions through 4.4.1

Description The issue is related to a URL Redirection to Untrusted Site, also known as an 'Open Redirect' vulnerability. This vulnerability affects the Simple Membership plugin.

Recommendations For versions through 4.4.1, update to a version later than 4.4.1 to resolve the issue. As a temporary workaround, consider restricting access to the redirect functionality in the Simple Membership plugin until a patch is available. Avoid using untrusted URLs in the affected plugin to minimize the risk of exploitation.