Ylefebvre

Link Library

14 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2025-46237

  • EPSS 0.02%
  • Published 22.04.2025 09:53:25
  • Last modified 30.04.2025 16:12:47

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Yannick Lefebvre Link Library allows Stored XSS. This issue affects Link Library: from n/a through 7.8.

6.1

CVE-2024-13404

  • EPSS 0.28%
  • Published 21.01.2025 10:15:07
  • Last modified 31.01.2025 20:18:46

The Link Library plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'searchll' parameter in all versions up to, and including, 7.7.2 due to insufficient input sanitization and output escaping. This makes it possible for unau...

6.1

CVE-2024-38711

  • EPSS 0.27%
  • Published 20.07.2024 08:15:11
  • Last modified 03.02.2025 15:43:59

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Yannick Lefebvre Link Library allows Reflected XSS.This issue affects Link Library: from n/a through 7.7.1.

6.1

CVE-2024-35687

  • EPSS 0.13%
  • Published 08.06.2024 15:15:51
  • Last modified 21.11.2024 09:20:39

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Yannick Lefebvre Link Library link-library allows Reflected XSS.This issue affects Link Library: from n/a through 7.6.3.

5.4

CVE-2024-4281

  • EPSS 0.31%
  • Published 08.05.2024 10:15:08
  • Last modified 03.02.2025 18:53:40

The Link Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'link-library' shortcode in all versions up to, and including, 7.6.11 due to insufficient input sanitization and output escaping on user supplied attr...

6.1

CVE-2024-2325

  • EPSS 2.53%
  • Published 09.04.2024 19:15:31
  • Last modified 31.01.2025 01:53:16

The Link Library plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the searchll parameter in all versions up to, and including, 7.6.6 due to insufficient input sanitization and output escaping. This makes it possible for unauth...

6.1

CVE-2024-29123

  • EPSS 0.17%
  • Published 19.03.2024 15:15:10
  • Last modified 05.02.2025 15:38:24

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Yannick Lefebvre Link Library allows Reflected XSS.This issue affects Link Library: from n/a through 7.6.

6.1

CVE-2024-1559

  • EPSS 0.53%
  • Published 20.02.2024 04:15:07
  • Last modified 05.02.2025 22:35:20

The Link Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'll_reciprocal' parameter in all versions up to, and including, 7.6 due to insufficient input sanitization and output escaping. This makes it possible for unau...

8.8

CVE-2024-24875

  • EPSS 0.07%
  • Published 12.02.2024 09:15:12
  • Last modified 21.11.2024 08:59:53

Cross-Site Request Forgery (CSRF) vulnerability in Yannick Lefebvre Link Library.This issue affects Link Library: from n/a through 7.5.13.

6.1

CVE-2024-24879

  • EPSS 0.16%
  • Published 08.02.2024 12:15:55
  • Last modified 21.11.2024 08:59:54

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Yannick Lefebvre Link Library allows Reflected XSS.This issue affects Link Library: from n/a through 7.5.13.