CVE-2024-13888

Name of the Vulnerable Software and Affected Versions WPMobile.App plugin for WordPress versions up to, and including, 11.56

Description The issue is due to insufficient validation on the redirect URL supplied via the redirect parameter. This makes it possible for unauthenticated attackers to redirect users to potentially malicious sites if they can successfully trick them into performing an action.

Recommendations For versions up to, and including, 11.56, update to a version that includes a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.