Lucene search
K

23 matches found

Patchstack
Patchstack
added 2026/05/01 9:31 a.m.8 views

WordPress Internal Link Juicer: SEO Auto Linker for WordPress plugin <= 2.24.6 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin Internal Link Juicer: SEO Auto Linker for WordPress versions = 2.24.6...

6.1CVSS5.8AI score0.00276EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-16449

Malicious code in bioql PyPI...

4.8CVSS6.3AI score0.00301EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-36898

Malicious code in bioql PyPI...

4.3CVSS6.6AI score0.00183EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:7 a.m.6 views

CVE-2024-37941

Cross-Site Request Forgery CSRF vulnerability in Internal Link Juicer Internal Link Juicer: SEO Auto Linker for WordPress.This issue affects Internal Link Juicer: SEO Auto Linker for WordPress: from n/a through 2.24.3...

4.3CVSS7AI score0.00183EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:25 a.m.9 views

CVE-2024-0657

The Internal Link Juicer: SEO Auto Linker for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings such as 'iljsettingsfieldlinksperpage' in all versions up to, and including, 2.23.4 due to insufficient input sanitization and output escaping. This makes i...

4.8CVSS5.7AI score0.00301EPSS
Exploits0References1
NVD
NVD
added 2024/07/12 2:15 p.m.17 views

CVE-2024-37941

Cross-Site Request Forgery CSRF vulnerability in Internal Link Juicer Internal Link Juicer: SEO Auto Linker for WordPress.This issue affects Internal Link Juicer: SEO Auto Linker for WordPress: from n/a through 2.24.3...

4.3CVSS0.00183EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/12 1:42 p.m.12 views

CVE-2024-37941 WordPress Internal Link Juicer: SEO Auto Linker for WordPress plugin <= 2.24.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Internal Link Juicer Internal Link Juicer: SEO Auto Linker for WordPress.This issue affects Internal Link Juicer: SEO Auto Linker for WordPress: from n/a through 2.24.3...

4.3CVSS7AI score0.00183EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/12 1:42 p.m.25 views

CVE-2024-37941 WordPress Internal Link Juicer: SEO Auto Linker for WordPress plugin <= 2.24.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Internal Link Juicer Internal Link Juicer: SEO Auto Linker for WordPress.This issue affects Internal Link Juicer: SEO Auto Linker for WordPress: from n/a through 2.24.3...

4.3CVSS0.00183EPSS
Exploits0References1
CVE
CVE
added 2024/07/12 1:42 p.m.42 views

CVE-2024-37941

CVE-2024-37941 is a CSRF vulnerability in the Internal Link Juicer: SEO Auto Linker for WordPress plugin, affecting the 2.24.3 release and earlier. The CVSS v3.1 base score is 4.3 (Medium). Public exploit details are not provided in the connected documents; remediation would be upgrading to 2.24....

4.3CVSS5.1AI score0.00183EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/07/12 12:0 a.m.5 views

WordPress plugin Internal Link Juicer security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS6.7AI score0.00183EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/07/09 5:9 p.m.5 views

WordPress Internal Link Juicer: SEO Auto Linker for WordPress plugin <= 2.24.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin Internal Link Juicer: SEO Auto Linker for WordPress versions = 2.24.3...

4.3CVSS7AI score0.00183EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/07/09 12:0 a.m.10 views

WordPress Internal Link Juicer: SEO Auto Linker for WordPress Plugin <= 2.24.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software Internal Link Juicer: SEO Auto Linker for WordPress Type Plugin Vulnerable versions = 2.24.3 Fixed in 2.24.4 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-37941 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID...

4.3CVSS6.8AI score0.00183EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/02/12 12:0 a.m.14 views

WordPress Internal Link Juicer: SEO Auto Linker for WordPress Plugin <= 2.23.4 is vulnerable to Cross Site Scripting (XSS)

Software Internal Link Juicer: SEO Auto Linker for WordPress Type Plugin Vulnerable versions = 2.23.4 Fixed in 2.23.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-0657 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID...

4.8CVSS5.8AI score0.00301EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/02/09 5:15 a.m.3 views

CVE-2024-0657

The Internal Link Juicer: SEO Auto Linker for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings such as 'iljsettingsfieldlinksperpage' in all versions up to, and including, 2.23.4 due to insufficient input sanitization and output escaping. This makes i...

4.8CVSS7.3AI score0.00301EPSS
Exploits0References2
Prion
Prion
added 2024/02/09 5:15 a.m.23 views

Cross site scripting

The Internal Link Juicer: SEO Auto Linker for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings such as 'iljsettingsfieldlinksperpage' in all versions up to, and including, 2.23.4 due to insufficient input sanitization and output escaping. This makes i...

4.3CVSS6AI score0.00301EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/09 4:31 a.m.21 views

CVE-2024-0657 Internal Link Juicer <= 2.23.4 - Authenticated (Admin+) Stored Cross-Site Scripting

The Internal Link Juicer: SEO Auto Linker for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings such as 'iljsettingsfieldlinksperpage' in all versions up to, and including, 2.23.4 due to insufficient input sanitization and output escaping. This makes i...

4.4CVSS6.7AI score0.00301EPSS
Exploits0References2
CVE
CVE
added 2024/02/09 4:31 a.m.74 views

CVE-2024-0657

CVE-2024-0657 affects the Internal Link Juicer (WordPress) where Stored XSS can be injected via admin settings (e.g., ilj_settings_field_links_per_page) in all versions up to 2.23.4 due to insufficient input sanitization/output escaping. Attackers with administrator privileges can execute scripts...

4.8CVSS4.9AI score0.00301EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/02/09 12:0 a.m.6 views

WordPress Plugin Internal Link Juicer: SEO Auto Linker for WordPress Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

4.8CVSS6AI score0.00301EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/02/08 12:0 a.m.7 views

PT-2024-15724 · WordPress · The Internal Link Juicer: Seo Auto Linker

Name of the Vulnerable Software and Affected Versions: The Internal Link Juicer: SEO Auto Linker for WordPress plugin for WordPress versions up to, and including, 2.23.4 Description: The issue is related to Stored Cross-Site Scripting via admin settings, such as ilj settings field links per page,...

4.8CVSS5.5AI score0.00301EPSS
Exploits0References8
WPVulnDB
WPVulnDB
added 2024/02/08 12:0 a.m.14 views

Internal Link Juicer < 2.23.5 - Authenticated (Admin+) Stored Cross-Site Scripting

Description The Internal Link Juicer: SEO Auto Linker for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings such as 'iljsettingsfieldlinksperpage' in all versions up to, and including, 2.23.4 due to insufficient input sanitization and output escaping...

4.8CVSS5.8AI score0.00301EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder