4 matches found
CVE-2021-4338
The CVE-2021-4338 entry concerns the WordPress 404 to 301 plugin. It describes an authorization bypass caused by missing capability checks on the open_redirect and save_redirect functions in versions up to and including 3.0.7. The vulnerability allows authenticated attackers to view, create, and ...
WordPress 404 to 301 plugin <= 3.1.1 - Reflected Cross-Site Scripting (XSS) vulnerability
Reflected Cross-Site Scripting XSS vulnerability discovered by WPScanTeam in WordPress 404 to 301 plugin versions = 3.1.1. Solution Update the WordPress 404 to 301 plugin to the latest available version at least 3.1.2...
Sql injection
The 404-to-301 plugin before 2.0.3 for WordPress has SQL injection...
CVE-2015-9323
The 404-to-301 plugin before 2.0.3 for WordPress has SQL injection...