The Redirect Redirection WordPress plugin has a security vulnerability in versions up to and including 1.1.3. This vulnerability makes it possible for unauthenticated attackers to delete redirect rules in bulk without needing to authenticate. This is because the plugin did not have the correct security measures in place to prevent such an attack, such as the validation of a nonce. It could be exploited if someone could trick a site administrator into clicking on a malicious link.