49 matches found
EUVD-2024-26765
Malicious code in bioql PyPI...
EUVD-2025-28167
Malicious code in bioql PyPI...
EUVD-2022-49924
Malicious code in bioql PyPI...
CVE-2022-47149
Cross-Site Request Forgery CSRF vulnerability in Pretty Links plugin = 3.4.0 versions...
CVE-2025-48247
Missing Authorization vulnerability in Blair Williams Shortlinks by Pretty Links pretty-link allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Shortlinks by Pretty Links: from n/a through = 3.6.15...
WordPress Shortlinks by Pretty Links plugin <= 3.6.15 - Broken Access Control Vulnerability
Broken Access Control Vulnerability discovered by domiee13 in WordPress Plugin Shortlinks by Pretty Links versions = 3.6.15...
CVE-2025-48247
Missing Authorization vulnerability in Blair Williams Shortlinks by Pretty Links pretty-link allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Shortlinks by Pretty Links: from n/a through = 3.6.15...
CVE-2025-48247 WordPress Shortlinks by Pretty Links <= 3.6.15 - Broken Access Control Vulnerability
Missing Authorization vulnerability in Blair Williams Shortlinks by Pretty Links allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Shortlinks by Pretty Links: from n/a through 3.6.15...
CVE-2025-48247 WordPress Shortlinks by Pretty Links plugin <= 3.6.15 - Broken Access Control Vulnerability
Missing Authorization vulnerability in Blair Williams Shortlinks by Pretty Links pretty-link allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Shortlinks by Pretty Links: from n/a through = 3.6.15...
WordPress plugin Shortlinks by Pretty Links 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPress...
PT-2025-21959 · Unknown · Shortlinks By Pretty Links
Name of the Vulnerable Software and Affected Versions: Shortlinks by Pretty Links versions 3.6.15 and earlier Description: The issue is related to a Missing Authorization vulnerability, allowing the exploitation of incorrectly configured access control security levels. Recommendations: For versio...
CVE-2024-29770
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pretty Links Shortlinks by Pretty Links allows Reflected XSS.This issue affects Shortlinks by Pretty Links: from n/a through 3.6.2...
CVE-2024-29770
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pretty Links Shortlinks by Pretty Links allows Reflected XSS.This issue affects Shortlinks by Pretty Links: from n/a through 3.6.2...
CVE-2024-29770 WordPress Pretty Links plugin <= 3.6.2 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pretty Links Shortlinks by Pretty Links allows Reflected XSS.This issue affects Shortlinks by Pretty Links: from n/a through 3.6.2...
CVE-2024-29770
CVE-2024-29770 — Reflected XSS in Pretty Links Shortlinks (Shortlinks by Pretty Links). Affected: Shortlinks plugin up to 3.6.2. Root cause: improper neutralization of input during web page generation. Impact: Low confidentiality, integrity, and availability impact per the CVSS; exploitation requ...
CVE-2024-29770 WordPress Pretty Links plugin <= 3.6.2 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pretty Links Shortlinks by Pretty Links allows Reflected XSS.This issue affects Shortlinks by Pretty Links: from n/a through 3.6.2...
PT-2024-23012 · Unknown · Shortlinks By Pretty Links
Name of the Vulnerable Software and Affected Versions: Shortlinks by Pretty Links versions n/a through 3.6.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. This enables potential attacke...
WordPress Plugin Pretty Links 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers.WordPress plugin is an...
WordPress Shortlinks by Pretty Links Plugin <= 3.6.2 is vulnerable to Cross Site Scripting (XSS)
Software Shortlinks by Pretty Links Type Plugin Vulnerable versions = 3.6.2 Fixed in 3.6.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29770 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b1b0efcde695 Credits Rafie Muhammad...
CVE-2024-2326
The Pretty Links – Affiliate Links, Link Branding, Link Tracking & Marketing Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.6.3. This is due to missing or incorrect nonce validation when saving plugin settings. This makes it possibl...