CVE-2020-11515

MEDIUM EXPLOITED NUCLEI

Rankmath Seo < 1.0.40.2 - Open Redirect

Title source: rule

Description

The Rank Math plugin through 1.0.40.2 for WordPress allows unauthenticated remote attackers to create new URIs (that redirect to an external web site) via the unsecured rankmath/v1/updateRedirection REST API endpoint. In other words, this is not an "Open Redirect" issue; instead, it allows the attacker to create a new URI with an arbitrary name (e.g., the /exampleredirect URI).

Exploits (1)

github WORKING POC 4 stars

by halilkirazkaya · poc

https://github.com/halilkirazkaya/cve-poc-garage/tree/main/2020/CVE-2020-11515.md

View Code ZIP pw:eip

Nuclei Templates (1)

Rank Math SEO <= 1.0.40.2 - Redirect Creation via Unprotected REST API Endpoint

MEDIUMVERIFIEDby s4e-io

References (3)

[Product, Release Notes] https://rankmath.com/changelog/

[Product] https://wordpress.org/plugins/seo-by-rank-math/#developers

[Exploit, Third Party Advisory] https://www.wordfence.com/blog/2020/03/critical-vulnerabilities-affecting-over-200000-sites-patched-in-rank-math-seo-plugin/

Scores

CVSS v3 6.1

EPSS 0.0063

EPSS Percentile 70.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

VulnCheck KEV 2023-01-30

CWE

CWE-601

Status published

Products (1)

rankmath/seo < 1.0.40.2

Published Apr 07, 2020

Tracked Since Feb 18, 2026