PLUGIN SECURITY
Is 404 Solution safe?
Known vulnerabilities, PHP compatibility and safer alternatives for the 404 Solution WordPress plugin — checked against WP Clinic's local security database.
Plugin details
- Slug:
404-solution - Requires PHP: 7.4+
- Max supported PHP (analyzed): 8.4
Known vulnerabilities
- 404 Solution [404-solution] < 2.33.1 [404 Solution <= 2.33.0 - Sensitive Information Exposure]
- 404 Solution [404-solution] < 2.34.0 [404 Solution <= 2.33.2 - Authenticated (Administrator+) SQL Injection via orderby]
- 404 Solution [404-solution] < 2.34.0 [WordPress 404 Solution Plugin < 2.34.0 is vulnerable to SQL Injection]
- 404 Solution [404-solution] < 2.35.0 [CVE-2023-50848, WordPress 404 Solution Plugin <= 2.34.0 is vulnerable to SQL Injection, 404 Solution <= 2.34.0 - Authenticated(Administrator+) SQL Injection, 404 Solution < 2.35.0 - Admin+ SQLi]
- 404 Solution [404-solution] < 2.33.1 [CVE-2023-52146, WordPress 404 Solution Plugin <= 2.33.0 is vulnerable to Sensitive Data Exposure, 404 Solution <= 2.33.0 - Sensitive Information Exposure via Log File, 404 Solution < 2.33.1 - Sensitive Information Exposure via Log File]
+ 5 more known vulnerabilities
- 404 Solution [404-solution] < 2.33.1 [404 Solution < 2.33.1 - Sensitive Information Exposure]
- 404 Solution [404-solution] < 2.35.8 [CVE-2024-1068, WordPress 404 Solution Plugin < 2.35.8 is vulnerable to SQL Injection, 404 Solution < 2.35.8 - Admin+ SQL Injection, 404 Solution <= 2.35.7 - Authenticated (Admin+) SQL Injection]
- 404 Solution [404-solution] < 2.35.18 [CVE-2024-11094, 404 Solution <= 2.35.17 - Missing Authentication to Sensitive Information Exposure, WordPress 404 Solution Plugin <= 2.35.17 is vulnerable to Sensitive Data Exposure, 404 Solution < 2.35.18 - Missing Authentication to Sensitive Information Exposure]
- 404 Solution [404-solution] < 2.35.20 [CVE-2024-11277, 404 Solution <= 2.35.19 - Reflected Cross-Site Scripting, WordPress 404 Solution Plugin <= 2.35.19 is vulnerable to Cross Site Scripting (XSS), 404 Solution < 2.35.20 - Reflected Cross-Site Scripting]
- 404 Solution [404-solution] < 3.1.1 [CVE-2025-14477, 404 Solution <= 3.1.0 - Authenticated (Admin+) SQL Injection via 'filterText' Parameter, EUVD-2025-203189]
Vulnerabilities are matched against the exact installed version when it's known. Always keep the plugin updated to the latest release.
Safer / more established alternatives
- Redirection — 2000000+ active installs — max PHP 8.4
- Broken Link Checker by AIOSEO – Find & Fix Broken Internal, External & Video Links — 300000+ active installs — max PHP 8.4
- 404 to 301 – Redirect Manager, 404 Error Logs & Notifications — 100000+ active installs — max PHP 8.4
- Smart Custom 404 Error Page — 100000+ active installs — max PHP 8.4
- Redirection — 100000+ active installs — max PHP 8.4
Check your own WordPress site
Run a free passive scan now, or create a free account and install the WP Clinic plugin for a deep scan of your whole hosting account and AI-assisted repair.