CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

RedhatCVE•added 2026/01/09 9:28 a.m.•2 views

CVE-2023-49770

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Peter Raschendorfer Smart External Link Click Monitor Link Log allows Stored XSS.This issue affects Smart External Link Click Monitor Link Log: from n/a through 5.0.2...

5.9CVSS6.5AI score0.00135EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2015-9184

Malware in sbrugna...

9.8CVSS9.5AI score0.00513EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 6:3 a.m.•2 views

CVE-2015-9344

The link-log plugin before 2.1 for WordPress has SQL injection...

9.8CVSS7.5AI score0.00513EPSS

Exploits0References1

OSV•added 2023/12/14 4:15 p.m.•3 views

CVE-2023-49771

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Peter Raschendorfer Smart External Link Click Monitor Link Log allows Reflected XSS.This issue affects Smart External Link Click Monitor Link Log: from n/a through 5.0.2...

6.1CVSS5.8AI score

Exploits0References1

OSV•added 2023/12/14 4:15 p.m.•0 views

CVE-2023-49770

4.8CVSS7.3AI score0.00135EPSS

Exploits0References1

NVD•added 2023/12/14 4:15 p.m.•10 views

CVE-2023-49771

7.1CVSS0.00175EPSS

Exploits0References1

CVE•added 2023/12/14 3:48 p.m.•61 views

CVE-2023-49771

CVE-2023-49771 affects the WordPress plugin Smart External Link Click Monitor [Link Log] up to version 5.0.2. Descriptions across sources confirm an improper neutralization of input leading to Reflected XSS, exploitable by unauthenticated users. No patch is available; PatchStack notes no fixed ve...

7.1CVSS7AI score0.00175EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/12/14 12:0 a.m.•2 views

WordPress and WordPress plugin cross-site scripting vulnerabilities

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress...

5.9CVSS6AI score0.00135EPSS

Exploits0References2

CNNVD•added 2023/12/14 12:0 a.m.•4 views

WordPress and WordPress plugin cross-site scripting vulnerabilities

7.1CVSS6AI score0.00175EPSS

Exploits0References2

CNVD•added 2019/08/29 12:0 a.m.•0 views

WordPress link-log plugin SQL injection vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. link-log is a plugin used to store a log of external link clicks. A SQL injection vulnerability exists in WordPress link-log plugin...

9.8CVSS8AI score0.00513EPSS

Exploits0References1

CNVD•added 2019/08/29 12:0 a.m.•2 views

WordPress link-log plugin injection vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. link-log is a plugin used to store a log of external link clicks. An injection vulnerability exists in WordPress link-log plugin...

7.5CVSS7.1AI score0.00254EPSS

Exploits0References1

NVD•added 2019/08/27 12:15 p.m.•7 views

CVE-2015-9344

The link-log plugin before 2.1 for WordPress has SQL injection...

9.8CVSS10AI score0.00513EPSS

Exploits0References1

NVD•added 2019/08/27 12:15 p.m.•10 views

CVE-2015-9345

The link-log plugin before 2.0 for WordPress has HTTP Response Splitting...

7.5CVSS7.7AI score0.00254EPSS

Exploits0References1

Prion•added 2019/08/27 12:15 p.m.•8 views

Design/Logic Flaw

The link-log plugin before 2.0 for WordPress has HTTP Response Splitting...

5CVSS7.2AI score0.00254EPSS

Exploits0References1Affected Software1

CVE•added 2019/08/27 11:34 a.m.•39 views

CVE-2015-9345

CVE-2015-9345 concerns the WordPress plugin Link Log, where versions before 2.0 expose a vulnerability due to HTTP Response Splitting. The affected component is the Link Log plugin for WordPress; the root cause is improper handling/validation of input during command/log construction, enabling hea...

7.5CVSS7.6AI score0.00254EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/08/27 11:34 a.m.•13 views

CVE-2015-9345

The link-log plugin before 2.0 for WordPress has HTTP Response Splitting...

7.6AI score0.00254EPSS

Exploits0References1

CVE•added 2019/08/27 11:27 a.m.•42 views

CVE-2015-9344

The CVE-2015-9344 affects the WordPress Link Log plugin prior to version 2.1, with an SQL injection vulnerability caused by lack of validation of externally supplied SQL statements. Public records (NVD/NIST) rate it as high/critical (CVSS2/HIGH, CVSS3/CRITICAL) and indicate network access with no...

9.8CVSS9.9AI score0.00513EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/08/27 11:27 a.m.•10 views

CVE-2015-9344

The link-log plugin before 2.1 for WordPress has SQL injection...

10AI score0.00513EPSS

Exploits0References1