Medium severity4.3NVD Advisory· Published Nov 17, 2021· Updated Jun 17, 2026
CVE-2021-24853
CVE-2021-24853
Description
The QR Redirector WordPress plugin before 1.6 does not have capability and CSRF checks when saving bulk QR Redirector settings via the qr_save_bulk AJAX action, which could allow any authenticated user, such as subscriber to change the redirect response status code of arbitrary QR Redirects
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/QR Redirector plugindescription
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/240bed24-0315-4bbf-ba17-e4947e5ecacbnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.