cleantalk
Vulnerabilities and Security Researches

Nested Pages, CVE-2021-38343

CVE, Research URL

CVE-2021-38343

Home page URL

Security reports for Nested Pages

Application

Nested Pages

Published on
Aug 31, 2021
Research Description
The Nested Pages WordPress plugin <= 3.1.15 was vulnerable to an Open Redirect via the `page` POST parameter in the `npBulkActions`, `npBulkEdit`, `npListingSort`, and `npCategoryFilter` `admin_post` actions.
Affected versions
Min -, max 3.1.16.
Status
vulnerable
Previous vulnerability researches
Nested Pages (CVE-2024-5943) , Jul 06, 2024
Nested Pages (CVE-2025-24579) , Jan 25, 2025
Nested Pages (CVE-2025-0718) , May 08, 2025
Nested Pages (CVE-2023-49195) , Jun 07, 2024
Nested Pages (CVE-2021-38343) , Jun 07, 2024
New vulnerability
CBX Map for Google Map &amp; OpenStreetMap (CVE-2025-47669) , May 09, 2025
Bold Page Builder (CVE-2025-47488) , May 09, 2025
Bold Page Builder (CVE-2025-47525) , May 09, 2025
Blocksy (CVE-2025-47465) , May 08, 2025
Ultimate Blocks &#8211; WordPress Blocks Plugin (CVE-2025-47493) , May 08, 2025