Every CVE whose affected-product data names Inisev Redirection, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-1330 — CVSS 6.5 (medium): The Redirection WordPress plugin before 1.1.4 does not add nonce verification in place when adding the redirect, which could allow…
CVE-2023-1331 — CVSS 6.5 (medium): The Redirection WordPress plugin before 1.1.5 does not have CSRF checks in the uninstall action, which could allow attackers to make logged…
CVE-2023-0958 — CVSS 4.3 (medium): Several plugins for WordPress by Inisev are vulnerable to unauthorized installation of plugins due to a missing capability check on the…
CVE-2023-3977 — CVSS 4.3 (medium): Several plugins for WordPress by Inisev are vulnerable to Cross-Site Request Forgery to unauthorized installation of plugins due to a…