Approved changes feed: RSS · Atom

cpe:2.3:a:anadnet:quick_page/post_redirect_plugin:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAnadnet (25ce0377-b689-5cc1-9517-b081e9c6b1ed)
ProductQuick Page/Post Redirect Plugin (065785c5-a9a4-5a51-a27e-2b2bd138b456)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-25063 vulnerable 2026-06-08 05:56:08.471663 WordPress Quick Page/Post Redirect Plugin <= 5.2.3 is vulnerable to Cross Site Scripting (XSS)
MEDIUM (5.9)
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Anadnet Quick Page/Post Redirect Plugin plugin <= 5.2.3 versions.
Published: 2023-08-08T11:38:42.668Z
Updated: 2026-04-28T16:08:07.623Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-36699 vulnerable 2026-06-08 05:25:49.391473 Quick Page/Post Redirect Plugin <= 5.1.9 - Redirect Security Bypass
MEDIUM (4.3)
The Quick Page/Post Redirect Plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on the qppr_save_quick_redirect_ajax and qppr_delete_quick_redirect functions in versions up to, and including, 5.1.9. This makes it possible for low-privileged attackers to interact with the plugin settings and to create a redirect link that would forward all traffic to an external malicious website.
Published: 2023-06-07T01:51:12.687Z
Updated: 2026-04-08T16:36:17.006Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.