CVE-2021-24142

Name of the Vulnerable Software and Affected Versions: 301 Redirects - Easy Redirect Manager WordPress plugin versions prior to 2.51

Description: The issue arises from unvalidated input in the 301 Redirects - Easy Redirect Manager WordPress plugin. Specifically, versions before 2.51 did not sanitize the Redirect From column when importing a CSV file. This oversight allows high privilege users to perform SQL injections.

Recommendations: For versions prior to 2.51, update to version 2.51 or later to resolve the issue. As a temporary workaround, consider restricting the import of CSV files or sanitizing the Redirect From column manually until a patch is applied. Avoid using the Redirect From column in the affected plugin until the issue is resolved.