CVE-2023-47761 – Simple 301 Redirects by BetterLinks <= 2.0.7 - Missing Authorization via clicked
https://notcve.org/view.php?id=CVE-2023-47761
The Simple 301 Redirects by BetterLinks plugin for WordPress is vulnerable to unauthorized enabling of plugin usage tracking due to a missing capability check on the clicked function in all versions up to, and including, 2.0.7. This makes it possible for subscribers to enable plugin tracking. • CWE-862: Missing Authorization •
CVE-2019-15818 – Simple 301 Redirects Addon Bulk Uploader <= 1.2.4 - Missing Authentication on Option Changes
https://notcve.org/view.php?id=CVE-2019-15818
The simple-301-redirects-addon-bulk-uploader plugin through 1.2.4 for WordPress has no requirement for authentication for action=bulk301export or action=bulk301clearlist. El plugin simple-301-redirects-addon-bulk-uploader a través de 1.2.4 para WordPress no tiene requisitos de autenticación para action = bulk301export o action = bulk301clearlist. • https://blog.nintechnet.com/unauthenticated-option-changes-in-wordpress-simple-301-redirects-addon-bulk-uploader-plugin https://wordpress.org/plugins/simple-301-redirects-addon-bulk-uploader/#developers https://wpvulndb.com/vulnerabilities/9503 • CWE-287: Improper Authentication CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •