Description
WordPress Plugin Simple 301 Redirects by BetterLinks is prone to multiple security bypass vulnerabilities. Exploiting these issues may allow attackers to perform otherwise restricted actions and subsequently set redirects that would deny access to the site, or install and activate arbitrary plugins. WordPress Plugin Simple 301 Redirects by BetterLinks versions starting from 2.0.0 and up to (and including) 2.0.3 are vulnerable.
Remediation
Update to plugin version 2.0.4 or latest
References
Related Vulnerabilities
WordPress Plugin GA Backend Tracking Cross-Site Scripting (1.2)
WordPress Plugin Photo Gallery, Images, Slider in Rbs Image Gallery Cross-Site Scripting (3.2.12)
Python Integer Overflow or Wraparound Vulnerability (CVE-2016-9063)
IBM WebSEAL Incorrect Default Permissions Vulnerability (CVE-2024-35139)