This plugin is prone to multiple cross site request forgery and cross site scripting vulnerabilities. In that way an attacker can change plugin settings via the โsourceโ or โredirโ parameters.
Update the plugin.
CPE | Name | Operator | Version |
---|---|---|---|
redirection page | le | 1.2 |