Vulnerability Discovered in Quick Page/Post Redirect Plugin < 5.1.9
https://blog.nintechnet.comQuick Page/Post Redirect WordPress plugin has 200,000+ active installations and can be used to redirect pages or posts. In versions prior to 5.1.9, there is a vulnerability that allows attackers to interact with the plugin settings and to create a redirect link that would forward all traffic to an external malicious website.
The issue has NOT been fixed and WordPress has removed the plugin from the WordPress Plugin Repo. The plugin was last updated 8 months ago.