Vulnerabilities > Vsourz > ALL IN ONE Redirection
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-22 | CVE-2024-37245 | Unspecified vulnerability in Vsourz ALL in ONE Redirection Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Vsourz Digital All In One Redirection allows Reflected XSS.This issue affects All In One Redirection: from n/a through 2.2.0. | 6.1 |
| 2023-07-10 | CVE-2023-2493 | Unspecified vulnerability in Vsourz ALL in ONE Redirection The All In One Redirection WordPress plugin before 2.2.0 does not properly sanitise and escape multiple parameters before using them in an SQL statement, leading to a SQL injection exploitable by high privilege users such as admin. | 7.2 |