PT-2021-15891 · Betterlinks · Simple 301 Redirects By Betterlinks
Chloe Chamberland
·
Published
2021-06-14
·
Updated
2022-12-09
·
CVE-2021-24355
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Simple 301 Redirects by BetterLinks WordPress plugin versions prior to 2.0.4
Description
The issue is related to the lack of capability checks and insufficient nonce check on the AJAX actions, specifically "simple301redirects/admin/get wildcard" and "simple301redirects/admin/wildcard". This made it possible for authenticated users to retrieve and update the wildcard value for redirects.
Recommendations
For versions prior to 2.0.4, update to version 2.0.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the "simple301redirects/admin/get wildcard" and "simple301redirects/admin/wildcard" API endpoints until a patch is available.
Exploit
Fix
Missing Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Simple 301 Redirects By Betterlinks