This page lists publicly disclosed CVE vulnerabilities affecting duckdev 404_to_301 (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2021-4338 | The 404 to 301 plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on the open_redirect & save_redirect functions in versions up to, and including, 3.0.7. This makes it possible for authenticated attackers to view, create and edit redirections. | [email protected] | 6.4 | 0.11% | 2023-06-07 | 2026-04-08 |
| CVE-2015-9323 | The 404-to-301 plugin before 2.0.3 for WordPress has SQL injection. | [email protected] | 9.8 | 72.37% | 2019-08-16 | 2024-11-21 |