Lucene search
K

10 matches found

CVE
CVE
added 2025/12/13 6:33 a.m.19 views

CVE-2025-10738

CVE-2025-10738 concerns the WordPress URL Shortener Plugin for WordPress. The initial description notes an Unauthenticated SQL Injection via the parameter ‘analytic_id’ in all versions up to and including 3.0.7, due to insufficient escaping and preparation of the SQL query. Connected documents (W...

9.8CVSS6.3AI score0.00354EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/07/16 11:28 a.m.11 views

CVE-2025-28959 WordPress URL Shortener <= 3.0.7 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Md Yeasin Ul Haider URL Shortener exact-links allows SQL Injection.This issue affects URL Shortener: from n/a through = 3.0.7...

9.3CVSS0.00371EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/16 11:28 a.m.11 views

CVE-2025-28961 WordPress URL Shortener <= 3.0.7 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in Md Yeasin Ul Haider URL Shortener exact-links allows Object Injection.This issue affects URL Shortener: from n/a through = 3.0.7...

9.8CVSS0.00503EPSS
Exploits0References1
CVE
CVE
added 2025/07/16 11:28 a.m.19 views

CVE-2025-28959

CVE-2025-28959 affects the WordPress plugin URL Shortener (versions up to 3.0.7). The issue is an SQL Injection caused by improper neutralization of special SQL elements in the URL Shortener’s queries. CVSS 3.1 base metrics indicate high impact on confidentiality and a critical overall score (9.3...

9.3CVSS5.9AI score0.00371EPSS
Exploits0References1
CVE
CVE
added 2025/07/16 11:28 a.m.24 views

CVE-2025-28961

CVE-2025-28961 corresponds to a deserialization of untrusted data vulnerability in the WordPress URL Shortener plugin (Md Yeasin Ul Haider) 3.0.7 when available, as stated in the sources. The vulnerability is not described as rejected or reserved in the provided materials.

9.8CVSS5.9AI score0.00503EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/16 11:28 a.m.5 views

CVE-2025-28965 WordPress URL Shortener <= 3.0.7 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Md Yeasin Ul Haider URL Shortener exact-links allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects URL Shortener: from n/a through = 3.0.7...

8.6CVSS5.2AI score0.00318EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/07/15 12:23 p.m.7 views

WordPress URL Shortener <= 3.0.7 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by ch4r0n in WordPress Plugin URL Shortener versions = 3.0.7...

8.6CVSS6.7AI score0.00318EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2025/07/04 12:0 a.m.3 views

WordPress plugin URL Shortener 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A code issue vulnerability...

5.4CVSS6.8AI score0.00161EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/07/09 12:0 a.m.7 views

WordPress URL Shortener by MyThemeShop Plugin <= 1.0.17 is vulnerable to Cross Site Scripting (XSS)

Software URL Shortener by MyThemeShop Type Plugin Vulnerable versions = 1.0.17 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5802 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 171657501903 Credits Sandeep...

6.1CVSS5.8AI score0.00403EPSS
Exploits1References3Affected Software1
Patchstack
Patchstack
added 2023/01/19 12:0 a.m.11 views

WordPress URL Shortener by MyThemeShop Plugin <= 1.0.17 is vulnerable to Broken Access Control

Software URL Shortener by MyThemeShop Type Plugin Vulnerable versions = 1.0.17 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-23896 Patch priority Medium CVSS severity Medium 5.4 Developer Claim ownership PSID e643a0198210 Credits István Márt...

8.8CVSS6.8AI score0.00521EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder