Clogica: >> Seo Redirection Plugin Security Vulnerabilities
The tab parameter of the settings page of the 404 SEO Redirection WordPress plugin through 1.3 is vulnerable to a reflected Cross-Site Scripting (XSS) issue as user input is not properly sanitised or escaped before being output in an attribute.
CVSS Score
6.1
EPSS Score
0.002
Published
2021-05-17
The SEO Redirection Plugin – 301 Redirect Manager WordPress plugin before 6.4 did not sanitise the Redirect From and Redirect To fields when creating a new redirect in the dashboard, allowing high privilege users (even with the unfiltered_html disabled) to set XSS payloads
CVSS Score
4.8
EPSS Score
0.002
Published
2021-05-17