The Redirection WordPress plugin prior to 1.1.5 does not have CSRF checks in the uninstall action, which could allow malicious users to make logged in admins delete all the redirections through a CSRF attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
inisev redirection |