3 matches found
CVE-2025-39440
CVE-2025-39440 represents a CSRF-to-Stored XSS vulnerability in the WordPress plugin Broken Links Remover, affecting versions up to 1.2.2. Public details confirm the flaw origin (CSRF) and the resulting stored XSS vector, with a CVSSv3.1 base score of 7.1 (HIGH). The Connected documents do not sp...
CVE-2025-39440 WordPress Broken Links Remover plugin <= 1.2.2 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Rajesh Broken Links Remover allows Stored XSS. This issue affects Broken Links Remover: from n/a through 1.2.2...
WordPress Broken Links Remover plugin <= 1.2.2 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by johska Patchstack Alliance in WordPress Plugin Broken Links Remover versions = 1.2.2...