CVE-2021-24832

Publication date

2021-11-08 17:35:30

Family

WPScan

State

PUBLISHED

Description

The WP SEO Redirect 301 WordPress plugin before 2.3.2 does not have CSRF in place when deleting redirects, which could allow attackers to make a logged in admin delete them via a CSRF attack