16 matches found
EUVD-2024-50934
Malicious code in bioql PyPI...
EUVD-2025-11706
Malicious code in bioql PyPI...
CVE-2024-12524
The Clinked Client Portal plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'clinked-login-button' shortcode in all versions up to, and including, 1.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible fo...
CVE-2025-32615
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Clinked Clinked Client Portal clinked-client-portal allows Reflected XSS.This issue affects Clinked Client Portal: from n/a through = 1.10...
CVE-2025-32615
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Clinked Clinked Client Portal clinked-client-portal allows Reflected XSS.This issue affects Clinked Client Portal: from n/a through = 1.10...
CVE-2025-32615
CVE-2025-32615 is a WordPress/plugin vulnerability in Clinked Client Portal (
CVE-2025-32615 WordPress Clinked Client Portal Plugin <= 1.10 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Clinked Clinked Client Portal clinked-client-portal allows Reflected XSS.This issue affects Clinked Client Portal: from n/a through = 1.10...
CVE-2025-32615 WordPress Clinked Client Portal Plugin <= 1.10 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Clinked Clinked Client Portal allows Reflected XSS. This issue affects Clinked Client Portal: from n/a through 1.10...
PT-2025-17140 · Unknown · Clinked Client Portal
Name of the Vulnerable Software and Affected Versions: Clinked Client Portal versions 1.10 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. This enables potential attackers to...
WordPress Clinked Client Portal Plugin <= 1.10 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Clinked Client Portal versions = 1.10...
CVE-2024-12524
The Clinked Client Portal plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'clinked-login-button' shortcode in all versions up to, and including, 1.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible fo...
CVE-2024-12524
CVE-2024-12524: Clinked Client Portal for WordPress is affected by a stored XSS via the clinked-login-button shortcode in versions up to 1.9. Exploitation requires authenticated access (Contributor+) and can inject scripts that run for page visitors. Public exploitation details are limited in the...
CVE-2024-12524 Clinked Client Portal <= 1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Clinked Client Portal plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'clinked-login-button' shortcode in all versions up to, and including, 1.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible fo...
CVE-2024-12524 Clinked Client Portal <= 1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Clinked Client Portal plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'clinked-login-button' shortcode in all versions up to, and including, 1.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible fo...
WordPress Clinked Client Portal plugin <= 1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Peter Thaleikis in WordPress Plugin Clinked Client Portal versions = 1.9...
WordPress plugin Clinked Client Portal 跨站脚本漏洞
WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exist...