CVE-2023-1331

Published: Apr 17, 2023Modified: Feb 6, 2025

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

The Redirection WordPress plugin before 1.1.5 does not have CSRF checks in the uninstall action, which could allow attackers to make logged in admins delete all the redirections through a CSRF attack.

Affected (1)

Products: Inisev: Redirection

Inisev

1 product

Redirection

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Inisev Redirection	Before 1.1.5

References (2)

https://wpscan.com/vulnerability/f81d9340-cf7e-46c4-b669-e61f2559cb8c

Source: contact@wpscan.com

ExploitThird Party Advisory

https://wpscan.com/vulnerability/f81d9340-cf7e-46c4-b669-e61f2559cb8c

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.