Lucene search
K

15 matches found

Nuclei
Nuclei
added 4 days ago48 views

404 to 301 <= 2.0.2 - Authenticated Blind SQL Injection

The 404 to 301 – Redirect, Log and Notify 404 Errors WordPress plugin was affected by an Authenticated Blind SQL Injection security vulnerability. id: CVE-2015-9323 info: name: 404 to 301 = 2.0.2 - Authenticated Blind SQL Injection author: Harsh severity: critical description: | The 404 to 301 –...

9.8CVSS7.3AI score0.46125EPSS
Exploits4References5
Patchstack
Patchstack
added 2023/07/19 12:0 a.m.7 views

WordPress 404 to 301 Plugin <= 3.0.5 is vulnerable to Cross Site Scripting (XSS)

Software 404 to 301 Type Plugin Vulnerable versions = 3.0.5 Fixed in 3.0.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 6886ba1d92bc Credits Rafie Muhammad Patchstack Required...

5.9AI score0.00284EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2023/06/07 2:15 a.m.15 views

CVE-2021-4338

The 404 to 301 plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on the openredirect & saveredirect functions in versions up to, and including, 3.0.7. This makes it possible for authenticated attackers to view, create and edit redirections...

6.4CVSS6.1AI score0.00617EPSS
Exploits1References5
CVE
CVE
added 2023/06/07 1:51 a.m.41 views

CVE-2021-4338

The CVE-2021-4338 entry concerns the WordPress 404 to 301 plugin. It describes an authorization bypass caused by missing capability checks on the open_redirect and save_redirect functions in versions up to and including 3.0.7. The vulnerability allows authenticated attackers to view, create, and ...

6.4CVSS5.2AI score0.00617EPSS
Exploits1References5Affected Software1
Patchstack
Patchstack
added 2022/06/07 12:0 a.m.12 views

WordPress 404 to 301 plugin <= 3.1.1 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability discovered by WPScanTeam in WordPress 404 to 301 plugin versions = 3.1.1. Solution Update the WordPress 404 to 301 plugin to the latest available version at least 3.1.2...

2.6AI score
Exploits0References1Affected Software1
0day.today
0day.today
added 2022/02/02 12:0 a.m.233 views

Wordpress 404 to 301 2.0.2 Plugin - SQL Injection (Authenticated) Exploit

Exploit Title: Wordpress Plugin 404 to 301 2.0.2 - SQL-Injection Authenticated Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://de.wordpress.org/plugins/404-to-301/ Software Link: https://downloads.wordpress.org/plugin/404-to-301.2.0.2.zip Version: = 2.0.2 Tested on: Ubuntu 20.04 CV...

9.8CVSS0.6AI score0.46125EPSS
Exploits4
CNVD
CNVD
added 2019/08/20 12:0 a.m.4 views

WordPress 404-to-301 Plugin SQL Injection Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. 404-to-301 is a plugin used to redirect 404 pages to other pages. The WordPress 404-to-301 plugin suffers from a SQL injection...

9.8CVSS7.9AI score0.46125EPSS
Exploits4References1
Prion
Prion
added 2019/08/16 9:15 p.m.21 views

Sql injection

The 404-to-301 plugin before 2.0.3 for WordPress has SQL injection...

7.5CVSS8.4AI score0.46125EPSS
Exploits4References2Affected Software1
Cvelist
Cvelist
added 2019/08/16 8:12 p.m.26 views

CVE-2015-9323

The 404-to-301 plugin before 2.0.3 for WordPress has SQL injection...

10AI score0.46125EPSS
Exploits4References2
CVE
CVE
added 2019/08/16 8:12 p.m.406 views

CVE-2015-9323

The CVE-2015-9323 entry corresponds to a vulnerability in the WordPress plugin 404-to-301 (Redirect, Log and Notify 404 Errors). Affected versions are before 2.0.3, with an Authenticated Blind SQL Injection vulnerability in the plugin’s code path. Exploitation is described as authenticated (requi...

9.8CVSS9.9AI score0.46125EPSS
Exploits4References2Affected Software1
exploitpack
exploitpack
added 2016/11/08 12:0 a.m.23 views

WordPress Plugin 404 to 301 2.2.8 - Persistent Cross-Site Scripting

WordPress Plugin 404 to 301 2.2.8 - Persistent Cross-Site Scripting Source: https://sumofpwn.nl/advisory/2016/storedcrosssitescriptingvulnerabilityin404to301wordpressplugin.html Stored Cross-Site Scripting vulnerability in 404 to 301 WordPress Plugin Abstract A stored Cross-Site Scripting...

6.7AI score
Exploits0
0day.today
0day.today
added 2016/11/08 12:0 a.m.34 views

WordPress 404 to 301 Plugin 2.2.8 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Source: https://sumofpwn.nl/advisory/2016/storedcrosssitescriptingvulnerabilityin404to301wordpressplugin.html Stored Cross-Site Scripting vulnerability in 404 to 301 WordPress Plugin Abstract A stored Cross-Site Scripting vulnerability was fou...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2016/11/08 12:0 a.m.33 views

WordPress Plugin 404 to 301 2.2.8 - Persistent Cross-Site Scripting

Source: https://sumofpwn.nl/advisory/2016/storedcrosssitescriptingvulnerabilityin404to301wordpressplugin.html Stored Cross-Site Scripting vulnerability in 404 to 301 WordPress Plugin Abstract A stored Cross-Site Scripting vulnerability was found in the 404 to 301 WordPress Plugin. This issue can ...

7.4AI score
Exploits0
WPVulnDB
WPVulnDB
added 2016/08/29 12:0 a.m.9 views

404 to 301 <= 2.3.0 - Unauthenticated Stored Cross-Site Scripting (XSS)

Description There is a stored XSS in the 404-to-301 WP plugin HTTP/1.1 Host: wordpress Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 Windows NT 6.1; WOW64 AppleWebKit/537.36 KHTML, like Gecko Chrome/51.0.2704.103 Safari/537.36 Accept:...

5.8AI score
Exploits0References4
Patchstack
Patchstack
added 2016/08/27 12:0 a.m.13 views

WordPress 404 to 301 Plugin <= 2.3.0 - Cross Site Scripting

Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update this plugin...

2.3AI score
Exploits0References2Affected Software1
Rows per page
Query Builder