2 matches found
CVE-2021-24767
The Redirect 404 Error Page to Homepage or Custom Page with Logs WordPress plugin before 1.7.9 does not check for CSRF when deleting logs, which could allow attacker to make a logged in admin delete them via a CSRF attack...
CVE-2021-24767
The CVE-2021-24767 entry affects the WordPress plugin “Redirect 404 Error Page to Homepage or Custom Page with Logs” (versions prior to 1.7.9). The root cause is a missing CSRF check when deleting logs, enabling a CSRF attacker to cause an authenticated admin to delete logs. Reported impact align...