Description
WordPress Plugin SEO Redirection-301 Redirect Manager is prone to a cross-site request forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application; other attacks are also possible. WordPress Plugin SEO Redirection-301 Redirect Manager version 7.8 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 7.9 or latest
References
https://sploitus.com/exploit?id=WPEX-ID:F85BF3C3-75AA-485C-A8AC-2F58C0C960E1
https://plugins.svn.wordpress.org/seo-redirection/trunk/readme.txt
Related Vulnerabilities
WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (8.0.17)
Serendipity Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-5476)
WordPress 5.8.x Multiple Vulnerabilities (5.8 - 5.8.2)
OpenSSL Out-of-bounds Write Vulnerability (CVE-2017-3737)
WordPress 2.0.5 Charset Decoding SQL Injection Vulnerability (0.6.2 - 2.0.5)