CVE-2025-4047
- EPSS 0.05%
- Veröffentlicht 03.06.2025 02:27:34
- Zuletzt bearbeitet 04.06.2025 14:54:33
The Broken Link Checker plugin for WordPress is vulnerable to unauthorized data access due to a missing capability check on the ajax_full_status and ajax_dashboard_status functions in all versions up to, and including, 2.4.4. This makes it possible f...
CVE-2024-8981
- EPSS 1.5%
- Veröffentlicht 01.10.2024 03:15:02
- Zuletzt bearbeitet 04.10.2024 13:51:25
The Broken Link Checker plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg in /app/admin-notices/features/class-view.php without appropriate escaping on the URL in all versions up to, and including, 2...
CVE-2024-28890
- EPSS 0.84%
- Veröffentlicht 23.04.2024 05:15:49
- Zuletzt bearbeitet 04.04.2025 13:12:03
Forminator prior to 1.29.0 contains an unrestricted upload of file with dangerous type vulnerability. If this vulnerability is exploited, a remote attacker may obtain sensitive information by accessing files on the server, alter the site that uses th...
CVE-2024-25592
- EPSS 0.06%
- Veröffentlicht 15.03.2024 14:15:07
- Zuletzt bearbeitet 23.01.2025 19:32:59
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPMU DEV Broken Link Checker allows Stored XSS.This issue affects Broken Link Checker: from n/a through 2.2.3.
CVE-2015-10098
- EPSS 0.08%
- Veröffentlicht 08.04.2023 09:15:07
- Zuletzt bearbeitet 21.11.2024 02:24:22
A vulnerability was found in Broken Link Checker Plugin up to 1.10.5 on WordPress. It has been rated as problematic. Affected by this issue is the function print_module_list/show_warnings_section_notice/status_text/ui_get_action_links. The manipulati...