Description
WordPress Plugin Redirect 404 Error Page to Homepage or Custom Page with Logs is prone to a cross-site request forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application; other attacks are also possible. WordPress Plugin Redirect 404 Error Page to Homepage or Custom Page with Logs version 1.7.8 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.7.9 or latest
References
Related Vulnerabilities
MySQL CVE-2021-2203 Vulnerability (CVE-2021-2203)
WordPress 5.0.x Multiple Vulnerabilities (5.0 - 5.0.10)
WordPress Plugin Recipe Card Blocks for Gutenberg & Elementor Cross-Site Scripting (2.8.2)
WordPress Plugin Ultimate WordPress Auction Cross-Site Request Forgery (1.0.0)
PostgreSQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1052)