3 matches found
CVE-2021-24847
The importFromRedirection AJAX action of the SEO Redirection Plugin – 301 Redirect Manager WordPress plugin before 8.2, available to any authenticated user, does not properly sanitise the offset parameter before using it in a SQL statement, leading an SQL injection when the redirection plugin is...
CVE-2021-24847 SEO Redirection < 8.2 - Subscriber+ SQL Injection
The importFromRedirection AJAX action of the SEO Redirection Plugin – 301 Redirect Manager WordPress plugin before 8.2, available to any authenticated user, does not properly sanitise the offset parameter before using it in a SQL statement, leading an SQL injection when the redirection plugin is...
CVE-2021-24847
The CVE covers the WordPress SEO Redirection plugin (301 Redirect Manager) prior to version 8.2. The vulnerability is an SQL injection in the importFromRedirection AJAX action caused by insufficient sanitization of the offset parameter, exploitable by an authenticated user when the redirection pl...