14 matches found
EUVD-2022-49924
Malicious code in bioql PyPI...
CVE-2022-47149
Cross-Site Request Forgery CSRF vulnerability in Pretty Links plugin = 3.4.0 versions...
CVE-2024-2326
The Pretty Links – Affiliate Links, Link Branding, Link Tracking & Marketing Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.6.3. This is due to missing or incorrect nonce validation when saving plugin settings. This makes it possibl...
CVE-2024-2326 Pretty Links – Affiliate Links, Link Branding, Link Tracking & Marketing Plugin <= 3.6.3 - Cross-Site Request Forgery to Plugin Settings Update
The Pretty Links – Affiliate Links, Link Branding, Link Tracking & Marketing Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.6.3. This is due to missing or incorrect nonce validation when saving plugin settings. This makes it possibl...
PT-2024-19754 · WordPress · Pretty Links – Affiliate Links
Name of the Vulnerable Software and Affected Versions: The Pretty Links – Affiliate Links, Link Branding, Link Tracking & Marketing Plugin plugin for WordPress versions up to, and including, 3.6.3 Description: The issue is due to missing or incorrect nonce validation when saving plugin settings,...
Cross site scripting
The Pretty Links plugin for WordPress is vulnerable to Stored Cross-Site Scripting via various IP headers as well as the referer header in versions up to, and including, 2.1.9 due to insufficient input sanitization and output escaping in the tracklink function. This makes it possible for...
CVE-2019-25147 Pretty Links <= 2.1.9 - Unauthenticated Stored Cross-Site Scripting via track_link
The Pretty Links plugin for WordPress is vulnerable to Stored Cross-Site Scripting via various IP headers as well as the referer header in versions up to, and including, 2.1.9 due to insufficient input sanitization and output escaping in the tracklink function. This makes it possible for...
CVE-2019-25147 Pretty Links <= 2.1.9 - Unauthenticated Stored Cross-Site Scripting via track_link
The Pretty Links plugin for WordPress is vulnerable to Stored Cross-Site Scripting via various IP headers as well as the referer header in versions up to, and including, 2.1.9 due to insufficient input sanitization and output escaping in the tracklink function. This makes it possible for...
CVE-2019-25147
The CVE-2019-25147 issue concerns the Pretty Links WordPress plugin. Affected product: WordPress plugin Pretty Links, versions up to and including 2.1.9. Root cause: insufficient input sanitization and output escaping in the track_link function, enabling Stored Cross-Site Scripting via various IP...
CVE-2022-47149
Cross-Site Request Forgery CSRF vulnerability in Pretty Links plugin = 3.4.0 versions...
CVE-2022-47149
Cross-Site Request Forgery CSRF vulnerability in Pretty Links plugin = 3.4.0 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Pretty Links plugin = 1.4 versions...
CVE-2022-47149 WordPress Shortlinks by Pretty Links Plugin <= 3.4.0 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Pretty Links plugin = 3.4.0 versions...
Pretty Link Lite <= 1.6.2 - XSS in SWF
The Pretty Links – Link Management, Branding, Tracking & Sharing Plugin WordPress plugin was affected by a XSS in SWF security vulnerability...