Description
The WP-Redirection plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to and including 1.0.3. This is due to the absence of a nonce field in the admin settings form and the lack of any nonce verification (via check_admin_referer() or wp_verify_nonce()) in the displayWPRedirectionManagementPage() function before processing POST requests that add, edit, or delete URL redirection rules. This makes it possible for unauthenticated attackers to trick a logged-in administrator into clicking a crafted link, causing the attacker to create, modify, or delete redirection records in the plugin's database table without the administrator's consent.
Published: 2026-05-12
Score: 4.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The WP-Redirection plugin for WordPress is vulnerable to cross‑site request forgery in all versions up to and including 1.0.3 because the admin settings form lacks a nonce field and does not validate it before processing POST requests to add, edit, or delete redirect rules. An attacker who can trick a logged‑in administrator into clicking a crafted link can cause the administrator to create, modify, or delete redirection entries in the plugin’s database. This compromises the integrity of site URLs and can be used to deface the site, redirect users to malicious destinations, or disrupt traffic flow. The vulnerability does not provide direct code execution or data exfiltration, but it does allow an attacker to alter critical site behavior without the administrator’s consent.

Affected Systems

The affected product is the WordPress plugin WP‑Redirection (vendor phkcorp2005). All releases up to version 1.0.3 are vulnerable. No other products or versions are listed as affected.

Risk and Exploitability

The CVSS score of 4.3 indicates moderate severity. EPSS data is not available, and the vulnerability is not listed in CISA’s KEV catalog. The likely attack vector is a CSRF exploit that requires the attacker to lure a logged‑in administrator to a malicious link; no additional privileges are needed. This makes the vulnerability moderately likely to be targeted, especially on high‑traffic sites that use WP‑Redirection for URL routing.

Generated by OpenCVE AI on May 12, 2026 at 10:43 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the WP‑Redirection plugin to at least version 1.0.4 (or any newer release that includes a nonce check)
  • If an upgrade cannot be performed immediately, deactivate or uninstall the WP‑Redirection plugin to eliminate the CSRF surface
  • After the plugin is updated, verify that no unintended redirect rules remain in the database and that all redirects behave as expected

Generated by OpenCVE AI on May 12, 2026 at 10:43 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 12 May 2026 13:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 12 May 2026 08:30:00 +0000

Type Values Removed Values Added
Description The WP-Redirection plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to and including 1.0.3. This is due to the absence of a nonce field in the admin settings form and the lack of any nonce verification (via check_admin_referer() or wp_verify_nonce()) in the displayWPRedirectionManagementPage() function before processing POST requests that add, edit, or delete URL redirection rules. This makes it possible for unauthenticated attackers to trick a logged-in administrator into clicking a crafted link, causing the attacker to create, modify, or delete redirection records in the plugin's database table without the administrator's consent.
Title WP-Redirection <= 1.0.3 - Cross-Site Request Forgery to Settings Update
Weaknesses CWE-352
References
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-05-12T12:46:19.777Z

Reserved: 2026-04-30T20:02:20.664Z

Link: CVE-2026-7562

cve-icon Vulnrichment

Updated: 2026-05-12T12:46:11.246Z

cve-icon NVD

Status : Deferred

Published: 2026-05-12T09:16:57.453

Modified: 2026-05-12T14:03:52.757

Link: CVE-2026-7562

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-12T10:45:14Z

Weaknesses