2023-04-03 14:38:27
WPScan
PUBLISHED
The Redirection WordPress plugin before 1.1.4 does not add nonce verification in place when adding the redirect, which could allow attackers to add redirects via a CSRF attack.