Skip to content

jhaeger/quick-pagepost-redirect-plugin

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits

quick-pagepost-redirect-plugin

quick-pagepost-redirect-plugin

 
 

README.md

README.md

 
 

quick-pagepost-redirect-plugin.zip

quick-pagepost-redirect-plugin.zip

 
 

Repository files navigation

Quick Page/Post Redirect Plugin security patch

This is a patched version of the no-longer-supported Quick Page/Post Redirect Plugin.

Error Discovery

The security vulnerability was originally reported by NinTechNet here: https://blog.nintechnet.com/authenticated-settings-change-vulnerability-in-wordpress-quick-page-post-redirect-plugin-unpatched/

What This Patch Does

This wraps the database modification calls in a conditional that checks for admin capabilities of user calling the action.

This means that users MUST be an admin in order to create or delete redirects using this plugin.

Instructions

Download the .zip file (click this => https://github.com/jhaeger/quick-pagepost-redirect-plugin/raw/master/quick-pagepost-redirect-plugin.zip), and upload via the Upload Plugin feature at /wp-admin/plugin-install.php

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages