EUVD-2025-10612

Malicious code in bioql PyPI...

EUVD-2025-18237

Malicious code in bioql PyPI...

CVE-2025-5926 Link Shield <= 0.5.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The Link Shield plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.5.4. This is due to missing or incorrect nonce validation on the linkshieldmenuoptions function. This makes it possible for unauthenticated attackers to update settings and...

CVE-2025-5926 Link Shield <= 0.5.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The Link Shield plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.5.4. This is due to missing or incorrect nonce validation on the linkshieldmenuoptions function. This makes it possible for unauthenticated attackers to update settings and...

CVE-2025-5926

The CVE-2025-5926 entry concerns the Link Shield WordPress plugin. Connected sources confirm a Cross-Site Request Forgery weakness due to missing nonce validation in link_shield_menu_options(), enabling unauthenticated requests to update settings and inject stored scripts. Affected versions are u...

PT-2025-25376 · WordPress · Link Shield

Name of the Vulnerable Software and Affected Versions: The Link Shield plugin for WordPress versions up to, and including, 0.5.4 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on the link shield menu options function. This allows...

WordPress plugin Link Shield 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

CVE-2025-32503

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jose Conti Link Shield link-shield allows Stored XSS.This issue affects Link Shield: from n/a through = 0.5.4...

CVE-2025-32503

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jose Conti Link Shield link-shield allows Stored XSS.This issue affects Link Shield: from n/a through = 0.5.4...

CVE-2025-32503 WordPress Link Shield plugin <= 0.5.4 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jose Conti Link Shield allows Stored XSS. This issue affects Link Shield: from n/a through 0.5.4...

CVE-2025-32503 WordPress Link Shield plugin <= 0.5.4 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jose Conti Link Shield link-shield allows Stored XSS.This issue affects Link Shield: from n/a through = 0.5.4...

CVE-2025-32503

CVE-2025-32503 affects the WordPress plugin Link Shield (Link Shield) up to version 0.5.4, describing a stored Cross-Site Scripting vulnerability in input handling during web page generation. The vulnerability is listed as Cross-Site Scripting with a patch status of Unpatched in vendor/public sou...

PT-2025-15782 · Unknown · Jose Conti Link Shield

Name of the Vulnerable Software and Affected Versions: Jose Conti Link Shield versions 0.5.4 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker can...

WordPress plugin Link Shield 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...