WordPress Plugin Vulnerabilities

Redirection 2.3.3 - view/admin/item.php URL Handling Reflected XSS

Description

The Redirection WordPress plugin was affected by a view/admin/item.php URL Handling Reflected XSS security vulnerability.

Affects Plugins

Plugin icon
redirection
Fixed in 2.3.4

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Verified
No
WPVDB ID
9d3daf86-f758-47cc-8db4-9e73a0f5428f

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2018-06-13 (about 7 years ago)

Other

Published
Title
Published
2025-03-27
Title
Cozy Blocks < 2.1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2023-01-18
Title
Youtube Channel Gallery <= 2.4 - Contributor+ Stored XSS via Shortcode
Published
2024-12-19
Title
aklamator-infeed <= 2.0.0 - Admin+ Stored XSS
Published
2025-03-24
Title
City Store <= 1.4.5 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2024-07-01
Title
CM Popup Plugin for WordPress < 1.6.6 - Contributor+ Stored XSS