CVE-2011-4562
John Godley Redirection Plugin - XSS
Title source: ruleDescription
Multiple cross-site scripting (XSS) vulnerabilities in (1) view/admin/log_item.php and (2) view/admin/log_item_details.php in the Redirection plugin 2.2.9 for WordPress allow remote attackers to inject arbitrary web script or HTML via the Referer HTTP header in a request to a post that does not exist.
References (8)
Scores
EPSS
0.0040
EPSS Percentile
60.4%
Classification
CWE
CWE-79
Status
published
Affected Products (2)
john_godley/redirection_plugin
n/a/n/a
Timeline
Published
Nov 28, 2011
Tracked Since
Feb 18, 2026