CVE-2016-20071 in 404 Redirection Manager Plugininfo

Summary

by MITRE • 06/15/2026

The 404 Redirection Manager plugin version 1.0 for WordPress contains an unauthenticated SQL injection vulnerability that allows remote attackers to execute arbitrary SQL queries by injecting malicious code through unsanitized user input. Attackers can craft GET requests with SQL injection payloads to manipulate database queries and extract sensitive information from the WordPress database.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

VulnCheck

Reservation

06/15/2026

Disclosure

06/15/2026

Moderation

accepted

Entry

VDB-370910

CPE

ready

CWE

CWE-89 (confirmed)

Exploit

Download

CVSS

8.2 (CNA)

EPSS

0.00000

KEV

Activities

low

Sector

Hostingprovider

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-20071
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-20071
CVE Details	https://www.cvedetails.com/cve/CVE-2016-20071/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!