Threat Entry Updated 2024-11-21

CVE-2022-38704 - Seo Redirection Plugin

Cross-Site Request Forgery (CSRF) vulnerability in SEO Redirection plugin

PLUGIN Seo Redirection

CVE-2022-38704

MEDIUM CVSS 5.4 2022-09-23

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-11-21

CVE-2021-24325 - Seo Redirection Plugin

The tab parameter of the settings page of the 404 SEO Redirection WordPress plugin through 1.3 is vulnerable to a reflected Cross-Site Scripting (XSS) issue as user input is not properly sanitised or escaped before being output in an attribute.

PLUGIN Seo Redirection

CVE-2021-24325

MEDIUM CVSS 6.1 2021-05-17

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-11-21

CVE-2021-24327 - Seo Redirection Plugin

The SEO Redirection Plugin – 301 Redirect Manager WordPress plugin before 6.4 did not sanitise the Redirect From and Redirect To fields when creating a new redirect in the dashboard, allowing high privilege users (even with the unfiltered_html disabled) to set XSS payloads

PLUGIN Seo Redirection

CVE-2021-24327

MEDIUM CVSS 4.8 2021-05-17

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-11-21

CVE-2021-24187 - Seo Redirection Plugin

The setting page of the SEO Redirection Plugin - 301 Redirect Manager WordPress plugin before 6.4 is vulnerable to reflected Cross-Site Scripting (XSS) as user input is not properly sanitised before being output in an attribute.

PLUGIN Seo Redirection

CVE-2021-24187

MEDIUM CVSS 5.4 2021-04-05

Risk Score

Open Full Technical Breakdown