CVE-2026-50887

A Server-Side Request Forgery SSRF in the automatic short URL title resolution component of shlink v5.0.1 allows attackers to scan internal resources via supplying a crafted longUrl...

CVE-2023-45058

Cross-Site Request Forgery CSRF vulnerability in KaizenCoders Short URL plugin = 1.6.8 versions...

EUVD-2009-4691

Malware in sbrugna...

EUVD-2010-1092

Malware in sbrugna...

EUVD-2009-2636

Malware in sbrugna...

EUVD-2010-1093

Malware in sbrugna...

EUVD-2023-51357

Malicious code in bioql PyPI...

EUVD-2023-49379

Malicious code in bioql PyPI...

EUVD-2024-29959

Malicious code in bioql PyPI...

EUVD-2024-46605

Malicious code in bioql PyPI...

EUVD-2023-23836

Malicious code in bioql PyPI...

EUVD-2022-49641

Malicious code in bioql PyPI...

CVE-2025-55420

creationtimestamp| type| source ---|---|--- 2025-08-21 18:43:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lwwlw7fktl2a...

CVE-2023-2921

The Short URL WordPress plugin through 1.6.8 does not properly sanitise and escape a parameter before using it in SQL statement, leading to a SQL injection exploitable by users with relatively low privilege on the site, like subscribers...

CVE-2023-2921

The CVE-2023-2921 entry concerns the WordPress Short URL plugin (versions ≤ 1.6.8). A parameter is not properly sanitised/escaped before its use in an SQL statement, enabling SQL injection. Impact is stated as exploitable by users with low privileges (e.g., subscribers). Affected component is the...

CVE-2023-2921 Short URL <= 1.6.8 - Subscriber+ SQLi

The Short URL WordPress plugin through 1.6.8 does not properly sanitise and escape a parameter before using it in SQL statement, leading to a SQL injection exploitable by users with relatively low privilege on the site, like subscribers...

CVE-2023-2921 Short URL <= 1.6.8 - Subscriber+ SQLi

The Short URL WordPress plugin through 1.6.8 does not properly sanitise and escape a parameter before using it in SQL statement, leading to a SQL injection exploitable by users with relatively low privilege on the site, like subscribers...

PT-2025-24017 · WordPress · Short Url Wordpress Plugin

Name of the Vulnerable Software and Affected Versions: Short URL WordPress plugin versions 1.6.8 and earlier Description: The issue is related to a SQL injection problem. The Short URL WordPress plugin does not properly sanitise and escape a parameter before using it in a SQL statement, leading t...

WordPress plugin Short URL 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

CVE-2024-5380

A vulnerability classified as problematic has been found in jsy-1 short-url 1.0.0. Affected is an unknown function of the file admin.php. The manipulation of the argument url leads to cross site scripting. It is possible to launch the attack remotely. Upgrading to version 2.0.0 is able to address...