cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2021-4338,https://securityvulnerability.io/vulnerability/CVE-2021-4338,Authorization Bypass in 404 to 301 Redirects Plugin for WordPress,"The 404 to 301 plugin for WordPress is susceptible to authorization bypass due to inadequate capability checks in the open_redirect and save_redirect functions. Authenticated attackers can exploit this vulnerability to create, edit, and view redirections without proper permissions, potentially leading to unauthorized access and manipulation of redirection paths.",Wordpress,"404 To 301 – Redirect, Log And Notify 404 Errors",6.4,MEDIUM,0.0012000000569969416,false,,false,false,false,,false,false,2023-06-07T01:51:11.349Z,0
CVE-2021-24766,https://securityvulnerability.io/vulnerability/CVE-2021-24766,404 to 301 < 3.0.9 - Logs Deletion via CSRF,"The 404 to 301 – Redirect, Log and Notify 404 Errors WordPress plugin before 3.0.9 does not have CSRF check in place when cleaning the logs, which could allow attacker to make a logged in admin delete all of them via a CSRF attack",Wordpress,"404 To 301 – Redirect, Log And Notify 404 Errors",6.5,MEDIUM,0.0006099999882280827,false,,false,false,false,,false,false,2021-11-08T17:35:17.000Z,0