CVE-2023-38478 – WordPress Integration for WooCommerce and QuickBooks Plugin <= 1.2.3 is vulnerable to Open Redirection

https://notcve.org/view.php?id=CVE-2023-38478

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for WooCommerce and QuickBooks.This issue affects Integration for WooCommerce and QuickBooks: from n/a through 1.2.3. Vulnerabilidad de redireccionamiento de URL a un sitio que no es de confianza ("Open Redirect") en CRM Perks Integration for WooCommerce and QuickBooks. Este problema afecta a Integration for WooCommerce and QuickBooks: desde n/a hasta 1.2.3. The Integration for WooCommerce and QuickBooks plugin for WordPress is vulnerable to Open Redirect in versions up to, and including, 1.2.3. This is due to insufficient validation on the redirect url supplied by the user in the setup_plugin function. • https://patchstack.com/database/vulnerability/wp-woocommerce-quickbooks/wordpress-integration-for-woocommerce-and-quickbooks-plugin-1-2-3-open-redirection-vulnerability?_s_id=cve • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •