CVE-2021-24142

Publication date

2021-03-18 14:57:50

Family

WPScan

State

PUBLISHED

Description

Unvaludated input in the 301 Redirects - Easy Redirect Manager WordPress plugin, versions before 2.51, did not sanitise its "Redirect From" column when importing a CSV file, allowing high privilege users to perform SQL injections.