Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total2

Critical0

High0

Medium2

Search Severity Year Type Sort Order

Reset

Showing 1-2 of 2 records

Threat Entry Updated 2024-11-21

CVE-2021-24324 - All 404 Redirect To Homepage Plugin

The 404 SEO Redirection WordPress plugin through 1.3 is lacking CSRF checks in all its settings, allowing attackers to make a logged in user change the plugin's settings. Due to the lack of sanitisation and escaping in some fields, it could also lead to Stored Cross-Site Scripting issues

PLUGIN All 404 Redirect To Homepage

CVE-2021-24324

MEDIUM CVSS 6.5 2021-05-17

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-11-21

CVE-2021-24326 - All 404 Redirect To Homepage Plugin

The tab parameter of the settings page of the All 404 Redirect to Homepage WordPress plugin before 1.21 was vulnerable to an authenticated reflected Cross-Site Scripting (XSS) issue as user input was not properly sanitised before being output in an attribute.

PLUGIN All 404 Redirect To Homepage

CVE-2021-24326

MEDIUM CVSS 5.4 2021-05-17

Risk Score

Open Full Technical Breakdown

Blog

"Prevention is cheaper than a breach"

Threat Database

CVE-2021-24324 - All 404 Redirect To Homepage Plugin

CVE-2021-24326 - All 404 Redirect To Homepage Plugin

Company Links

Contact Us