Clickwhale Security Vulnerabilities and Issues — Clickwhale CVE List

Lucene search

FlowdeeClickwhale

5 matches found

CVE•added 2025/02/25 3:15 p.m.•47 views

CVE-2025-26963

Cross-Site Request Forgery (CSRF) vulnerability in flowdee ClickWhale allows Cross Site Request Forgery. This issue affects ClickWhale: from n/a through 2.4.3.

8.8CVSS7AI score0.00025EPSS

CVE•added 2025/01/29 4:15 a.m.•46 views

CVE-2025-0804

The ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages plugin for WordPress is vulnerable to Stored Cross-Site Scripting via link titles in all versions up to, and including, 2.4.1 due to insufficient input sanitization and output escaping. This makes it po...

6.4CVSS5.7AI score0.00009EPSS

CVE•added 2025/01/07 11:15 a.m.•39 views

CVE-2024-51715

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ClickWhale ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages allows Blind SQL Injection.This issue affects ClickWhale – Link Manager, Link Shortener and C...

8.5CVSS8.9AI score0.00115EPSS

CVE•added 2025/05/07 3:16 p.m.•39 views

CVE-2025-47612

Missing Authorization vulnerability in flowdee ClickWhale allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects ClickWhale: from n/a through 2.4.6.

8.8CVSS5.5AI score0.00058EPSS

CVE•added 2025/01/11 3:15 a.m.•15 views

CVE-2024-11327

The ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.4....

6.1CVSS6.1AI score0.00141EPSS