Documentation: Home / Vulnerabilities / Input validation vulnerability in Redirect 404 Error Page to Homepage or Custom Page with Logs 1.8.7

Latest

Input validation vulnerability in Redirect 404 Error Page to Homepage or Custom Page with Logs 1.8.7

CVE-2023-47530

Severity: high-risk
Status: Fixed
Publication: November 7, 2023

The Redirect 404 Error Page to Homepage or Custom Page with Logs plugin for WordPress is vulnerable to a type of cyber attack called SQL Injection. This vulnerability affects versions of the plugin up to, and including, 1.8.7. The vulnerability exists because the plugin does not sufficiently protect user supplied parameters and does not correctly prepare existing SQL queries. A person with administrator-level access to the plugin can use the vulnerability to gain access to sensitive information from the database.

Detected in:

Redirect 404 Error Page to Homepage or Custom Page with Logs fixed vulnerable versions: >= * <= 1.8.7

Open source

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Incorrect?

Is this information incorrect? Please leave us a message.

Latest

404 not found errors

Protecting site visitors with Security Headers

Hardening your website’s security

Login protection as essential security

Why WordPress is (in)secure

Staying ahead of vulnerabilities

Input validation vulnerability in Redirect 404 Error Page to Homepage or Custom Page with Logs 1.8.7

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles