CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-19915

The "301 Redirects - Easy Redirect Manager" plugin before 2.45 for WordPress allows users (with subscriber or greater access) to modify, delete, or inject redirect rules, and exploit XSS, with the /admin-ajax.php?action=eps_redirect_save and /admin-ajax.php?action=eps_redirect_delete actions. This could result in a loss of site availability, malicious redirects, and user infections. This could also be exploited via CSRF.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.4%

CVSS Severity

CVSS v3 Score 9.0

CVSS v2 Score 6.0

References

Products affected by CVE-2019-19915

Webfactoryltd » 301 Redirects » Version: N/A

cpe:2.3:a:webfactoryltd:301_redirects:-
Webfactoryltd » 301 Redirects » Version: 1.0

cpe:2.3:a:webfactoryltd:301_redirects:1.0
Webfactoryltd » 301 Redirects » Version: 1.1

cpe:2.3:a:webfactoryltd:301_redirects:1.1
Webfactoryltd » 301 Redirects » Version: 1.2

cpe:2.3:a:webfactoryltd:301_redirects:1.2
Webfactoryltd » 301 Redirects » Version: 1.3

cpe:2.3:a:webfactoryltd:301_redirects:1.3
Webfactoryltd » 301 Redirects » Version: 1.3.1

cpe:2.3:a:webfactoryltd:301_redirects:1.3.1
Webfactoryltd » 301 Redirects » Version: 1.3.3

cpe:2.3:a:webfactoryltd:301_redirects:1.3.3
Webfactoryltd » 301 Redirects » Version: 1.3.4

cpe:2.3:a:webfactoryltd:301_redirects:1.3.4
Webfactoryltd » 301 Redirects » Version: 1.3.5

cpe:2.3:a:webfactoryltd:301_redirects:1.3.5
Webfactoryltd » 301 Redirects » Version: 1.4.0

cpe:2.3:a:webfactoryltd:301_redirects:1.4.0
Webfactoryltd » 301 Redirects » Version: 2.0.0

cpe:2.3:a:webfactoryltd:301_redirects:2.0.0
Webfactoryltd » 301 Redirects » Version: 2.0.1

cpe:2.3:a:webfactoryltd:301_redirects:2.0.1
Webfactoryltd » 301 Redirects » Version: 2.1.1

cpe:2.3:a:webfactoryltd:301_redirects:2.1.1
Webfactoryltd » 301 Redirects » Version: 2.1.2

cpe:2.3:a:webfactoryltd:301_redirects:2.1.2
Webfactoryltd » 301 Redirects » Version: 2.2.0

cpe:2.3:a:webfactoryltd:301_redirects:2.2.0
Webfactoryltd » 301 Redirects » Version: 2.2.3

cpe:2.3:a:webfactoryltd:301_redirects:2.2.3
Webfactoryltd » 301 Redirects » Version: 2.2.4

cpe:2.3:a:webfactoryltd:301_redirects:2.2.4
Webfactoryltd » 301 Redirects » Version: 2.2.6

cpe:2.3:a:webfactoryltd:301_redirects:2.2.6
Webfactoryltd » 301 Redirects » Version: 2.2.7

cpe:2.3:a:webfactoryltd:301_redirects:2.2.7
Webfactoryltd » 301 Redirects » Version: 2.3.0

cpe:2.3:a:webfactoryltd:301_redirects:2.3.0
Webfactoryltd » 301 Redirects » Version: 2.3.5

cpe:2.3:a:webfactoryltd:301_redirects:2.3.5
Webfactoryltd » 301 Redirects » Version: 2.40

cpe:2.3:a:webfactoryltd:301_redirects:2.40

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-19915

Products

Pricing

Contact Us