CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

CVE•added 2025/04/22 9:53 a.m.•43 views

CVE-2025-46237

CVE-2025-46237 affects the WordPress plugin Link Library (versions up to and including 7.8). It enables a Stored XSS via improper input neutralization during web page generation. A patched/fixed release is available (per patch-status), but the exact patched version is not specified here; remediat...

6.5CVSS7.2AI score0.00128EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/04/22 9:53 a.m.•6 views

CVE-2025-46237 WordPress Link Library <= 7.8 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Yannick Lefebvre Link Library allows Stored XSS. This issue affects Link Library: from n/a through 7.8...

6.5CVSS6.9AI score0.00128EPSS

Exploits0References1

Patchstack•added 2024/06/06 12:0 a.m.•8 views

WordPress Link Library Plugin <= 7.6.3 is vulnerable to Cross Site Scripting (XSS)

Software Link Library Type Plugin Vulnerable versions = 7.6.3 Fixed in 7.6.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35687 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f1dec70ad1bd Credits Dimas Maulana Required privilege...

7.1CVSS6.5AI score0.00232EPSS

Exploits0References2Affected Software1

Patchstack•added 2024/05/08 12:0 a.m.•7 views

WordPress Link Library Plugin <= 7.6.11 is vulnerable to Cross Site Scripting (XSS)

Software Link Library Type Plugin Vulnerable versions = 7.6.11 Fixed in 7.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4281 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID abed5ec79423 Credits Krzysztof Zając Required...

6.4CVSS5.8AI score0.00311EPSS

Exploits0References3Affected Software1

Patchstack•added 2024/03/16 12:0 a.m.•6 views

WordPress Link Library Plugin <= 7.6 is vulnerable to Cross Site Scripting (XSS)

Software Link Library Type Plugin Vulnerable versions = 7.6 Fixed in 7.6.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29123 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5c122d7aac5b Credits stealthcopter Required privilege...

7.1CVSS6.5AI score0.00173EPSS

Exploits0References2Affected Software1

Patchstack•added 2024/03/14 12:0 a.m.•14 views

WordPress Link Library Plugin <= 7.6.6 is vulnerable to Cross Site Scripting (XSS)

Software Link Library Type Plugin Vulnerable versions = 7.6.6 Fixed in 7.6.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2325 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6ac3bb374efb Credits Krzysztof Zając...

6.1CVSS5.6AI score0.02533EPSS

Exploits0References3Affected Software1

Patchstack•added 2024/02/20 12:0 a.m.•9 views

WordPress Link Library Plugin <= 7.6 is vulnerable to Cross Site Scripting (XSS)

Software Link Library Type Plugin Vulnerable versions = 7.6 Fixed in 7.6.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1559 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID da5a199a7b9e Credits Krzysztof Zając Require...

6.5CVSS5.6AI score0.0069EPSS

Exploits0References3Affected Software1

Patchstack•added 2024/02/05 12:0 a.m.•6 views

WordPress Link Library Plugin <= 7.5.13 is vulnerable to Cross Site Request Forgery (CSRF)

Software Link Library Type Plugin Vulnerable versions = 7.5.13 Fixed in 7.6 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-24875 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 771a2cb13065 Credits Dhabaleshwar Das Requir...

8.8CVSS6.6AI score0.0007EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by