CVE-2021-24187

CVE-2021-24187: SEO Redirection < 6.4 - Authenticated Reflected Cross-Site Scripting (XSS)

Vendor Unknown
Product SEO Redirection Plugin - 301 Redirect Manager
Weakness CWE-79 · XSS
Published April 5, 2021
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

The setting page of the SEO Redirection Plugin - 301 Redirect Manager WordPress plugin before 6.4 is vulnerable to reflected Cross-Site Scripting (XSS) as user input is not properly sanitised before being output in an attribute.

Key dates

02Disclosure timeline

April 5, 2021 CVE published
August 3, 2024 Record updated