CVE-2021-24353

CVE-2021-24353: Simple 301 Redirects by BetterLinks - 2.0.0 – 2.0.3 - Unauthenticated Redirect Import

Vendor Unknown
Product Simple 301 Redirects by BetterLinks
Weakness CWE-862 · Missing authorization
Published June 14, 2021
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

The import_data function of the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4 had no capability or nonce checks making it possible for unauthenticated users to import a set of site redirects.

Key dates

02Disclosure timeline

June 14, 2021 CVE published
August 3, 2024 Record updated