WordPress Plugin Vulnerabilities

Link Log < 2.1 - SQL Injection

Description

The Link Log – external link click monitor WordPress plugin was affected by a SQL Injection security vulnerability.

Affects Plugins

Plugin icon
link-log
Fixed in 2.1

References

CVE
CVE-2015-9344

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
9.8 (critical)

Miscellaneous

Verified
No
WPVDB ID
af4f7188-1404-4ad1-a875-f592737f85fd

Timeline

Publicly Published
2015-12-11 (about 10 years ago)
Added
2019-08-27 (about 6 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2024-02-22
Title
Admin side data storage for Contact Form 7 <= 1.1.1 - Authenticated (Admin+) SQL Injection
Published
2023-11-20
Title
Link Whisper Free < 0.6.6 - Authenticated (Contributor+) SQL Injection
Published
2025-01-22
Title
Product Table by WBW < 2.1.3 - Unuthenticated SQL Injection
Published
2014-08-01
Title
Wordspew - Remote SQL Injection
Published
2024-03-28
Title
WP Responsive Tabs horizontal vertical and accordion Tabs < 1.1.18 - Authenticated (Contributor+) SQL Injection