CVE-2026-52702

HIGH7.1JSON export Create alert

Description

Unauthenticated Cross Site Scripting (XSS) in SEO Redirection <= 9.17 versions.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

Low

Affected products

wp-buy / SEO Redirectionn/a – 9.17

References

MISChttps://patchstack.com/database/wordpress/plugin/seo-redirection/vulnerability/wordpress-seo-redirection-plugin-9-17-cross-site-scripting-xss-vulnerability?_s_id=cve