Skip to main content

301 Redirects

2 CVEs product

Monthly

CVE-2021-24142 HIGH This Week

Unvaludated input in the 301 Redirects - Easy Redirect Manager WordPress plugin, versions before 2.51, did not sanitise its "Redirect From" column when importing a CSV file, allowing high privilege. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

WordPress SQLi 301 Redirects
NVD WPScan
CVSS 3.1
7.2
EPSS
1.2%
CVE-2019-19915 CRITICAL POC Act Now

The "301 Redirects - Easy Redirect Manager" plugin before 2.45 for WordPress allows users (with subscriber or greater access) to modify, delete, or inject redirect rules, and exploit XSS, with the. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP WordPress XSS CSRF 301 Redirects
NVD
CVSS 3.1
9.0
EPSS
0.9%
EPSS 1% CVSS 7.2
HIGH This Week

Unvaludated input in the 301 Redirects - Easy Redirect Manager WordPress plugin, versions before 2.51, did not sanitise its "Redirect From" column when importing a CSV file, allowing high privilege. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

WordPress SQLi 301 Redirects
NVD WPScan
EPSS 1% CVSS 9.0
CRITICAL POC Act Now

The "301 Redirects - Easy Redirect Manager" plugin before 2.45 for WordPress allows users (with subscriber or greater access) to modify, delete, or inject redirect rules, and exploit XSS, with the. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP WordPress XSS +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy