3 matches found
WordPress Broken Link Checker Plugin < 2.4.1 XSS Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:managewp:brokenlinkchecker"; if description...
CVE-2024-8981 Broken Link Checker <= 2.4.0 - Reflected Cross-Site Scripting
The Broken Link Checker plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg in /app/admin-notices/features/class-view.php without appropriate escaping on the URL in all versions up to, and including, 2.4.0. This makes it possible for unauthenticated...
WordPress Broken Link Checker Plugin <= 2.4.0 is vulnerable to Cross Site Scripting (XSS)
Software Broken Link Checker Type Plugin Vulnerable versions = 2.4.0 Fixed in 2.4.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8981 Patch priority Medium CVSS severity Medium 7.1 Developer WPMU DEV PSID 5ef9d4c1245b Credits vgo0 Required privile...