Lucene search
Broken Link Manager Security Vulnerabilities
cve
The Broken Link Manager WordPress plugin through 0.6.5 does not sanitise, validate or escape the url GET parameter before using it in a SQL statement when retrieving an URL to edit, leading to an authenticated SQL injection...
7.2CVSS
7.1AI Score
0.001EPSS
2021-08-23 12:15 PM
21
cve
The broken-link-manager plugin before 0.5.0 for WordPress has wpslDelURL or wpslEditURL SQL injection via the url...
9.8CVSS
9.9AI Score
0.002EPSS
2019-10-10 05:15 PM
59
cve
The broken-link-manager plugin 0.4.5 for WordPress has XSS via the page parameter in a delURL...
6.1CVSS
6AI Score
0.001EPSS
2019-10-10 05:15 PM
51
cve
The broken-link-manager plugin before 0.6.0 for WordPress has XSS via the HTTP Referer or User-Agent header to a URL that does not...
6.1CVSS
6AI Score
0.002EPSS
2019-10-07 03:15 PM
38