Description
WordPress Plugin WP Symposium is prone to an open redirect vulnerability because the application fails to properly sanitize user-supplied input. Exploiting this issue may allow attackers to redirect users to arbitrary web sites and conduct phishing attacks; other attacks are also possible. WordPress Plugin WP Symposium version 13.12 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 14.02 or latest
References
Related Vulnerabilities
WordPress Plugin Participants Database SQL Injection (1.9.5.5)
WordPress Plugin Slider Hero with Animation, Video Background Unspecified Vulnerability (5.5.0)
WordPress Plugin WP Business Intelligence Lite SQL Injection (1.6.1)
WordPress Plugin ShiftNav-Responsive Mobile Menu Cross-Site Scripting (1.5.2)