Vulnerabilities > Clogica > ALL 404 Redirect TO Homepage
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-17 | CVE-2021-24324 | Cross-Site Request Forgery (CSRF) vulnerability in Clogica ALL 404 Redirect TO Homepage The 404 SEO Redirection WordPress plugin through 1.3 is lacking CSRF checks in all its settings, allowing attackers to make a logged in user change the plugin's settings. | 4.3 |
| 2021-05-17 | CVE-2021-24326 | Cross-site Scripting vulnerability in Clogica ALL 404 Redirect TO Homepage The tab parameter of the settings page of the All 404 Redirect to Homepage WordPress plugin before 1.21 was vulnerable to an authenticated reflected Cross-Site Scripting (XSS) issue as user input was not properly sanitised before being output in an attribute. | 3.5 |