Simple 301 Redirects by BetterLinks - 2.0.0 – 2.0.3 - Update and Retrieve Wildcard Value
CVE-2021-24355

4.3MEDIUM

Key Information:

Vendor: Wordpress
Status: Simple 301 Redirects By Betterlinks
Vendor: CVE Published:; 14 June 2021

Summary

In the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4, the lack of capability checks and insufficient nonce check on the AJAX actions, simple301redirects/admin/get_wildcard and simple301redirects/admin/wildcard, made it possible for authenticated users to retrieve and update the wildcard value for redirects.

Affected Version(s)

Simple 301 Redirects by BetterLinks 2.0.0 < 2.0.0*

Simple 301 Redirects by BetterLinks 2.0.4

References

https://www.wordfence.com/blog/2021/05/severe-vulnerabili...

x_refsource_MISC

https://wpscan.com/vulnerability/ce8f9648-30fb-4fb9-894e-...

x_refsource_CONFIRM

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 14, 2021
Vulnerability Reserved
Jan 14, 2021

Credit

Chloe Chamberland