WP Clinic
Log in Sign up

PLUGIN SECURITY

Is Redirection safe?

Known vulnerabilities, PHP compatibility and safer alternatives for the Redirection WordPress plugin — checked against WP Clinic's local security database.

Plugin details

  • Slug: redirection
  • Requires PHP: 7.4+
  • Max supported PHP (analyzed): 8.4

Known vulnerabilities

  • Redirection [redirection] < 2.2.12 [CVE-2012-6717, Redirection < 2.2.12 - Reflected Cross-Site Scripting, Redirection &lt; 2.2.12 - XSS]
  • Redirection [redirection] < 2.2.9 [CVE-2011-5329, Redirection <= 2.2.8 - Reflected Cross-Site Scripting, Redirection - wp-admin/tools.php id Parameter XSS]
  • Redirection [redirection] < 2.2.10 [CVE-2011-4562, WordPress Redirection Plugin <= 2.2.9 - Multiple XSS, Redirection <= 2.2.9 - Cross-Site Scripting, Redirection - view/admin/log_item.php Non-existent Posts Referer HTTP Header XSS]
  • Redirection [redirection] < 3.6.4 [WordPress Redirection plugin <= 3.6.2 - Cross-Site Request Forgery (CSRF) vulnerability]
  • Redirection [redirection] < 2.8 [WordPress Redirection plugin <= 2.7.3 - Authenticated Local File Inclusion vulnerability]
+ 7 more known vulnerabilities
  • Redirection [redirection] < 2.3.4 [WordPress Redirection Plugin <= 2.3.3 - Reflected XSS]
  • Redirection [redirection] < 2.2.9 [WordPress Redirection Plugin <= 2.2.8 - Cross Site Scripting]
  • Redirection [redirection] < 3.6.4 [Redirection <= 3.6.3 - Cross-Site Request Forgery to Remote Code Execution]
  • Redirection [redirection] < 2.8 [CVE-2018-1000504, Redirection <= 2.7.3 - Local File Inclusion]
  • Redirection [redirection] < 3.6.3 [Redirection &lt;= 3.6.2 - Cross-Site Request Forgery (CSRF)]
  • Redirection [redirection] < 2.8 [Redirection &lt;= 2.7.3 - Authenticated Local File Inclusion]
  • Redirection [redirection] < 2.3.4 [Redirection 2.3.3 - view/admin/item.php URL Handling Reflected XSS]

Vulnerabilities are matched against the exact installed version when it's known. Always keep the plugin updated to the latest release.

Safer / more established alternatives

Check your own WordPress site

Run a free passive scan now, or create a free account and install the WP Clinic plugin for a deep scan of your whole hosting account and AI-assisted repair.