404 SEO Redirection <= 1.3 - Reflected Cross-Site Scripting (XSS)
CVE-2021-24325
6.1MEDIUM
What is CVE-2021-24325?
The tab parameter of the settings page of the 404 SEO Redirection WordPress plugin through 1.3 is vulnerable to a reflected Cross-Site Scripting (XSS) issue as user input is not properly sanitised or escaped before being output in an attribute.
Affected Version(s)
404 SEO Redirection 1.3