WordPress Plugin Vulnerabilities

Broken Link Manager < 0.5.0 - Unauthenticated SQL Injection & XSS

Description

The Broken Link Manager WordPress plugin was affected by an Unauthenticated SQL Injection & XSS security vulnerability.

Affects Plugins

Plugin icon
broken-link-manager
Fixed in 0.5.0

References

CVE
CVE-2015-9468
CVE
CVE-2015-9467
URL
http://cinu.pl/research/wp-plugins/mail_604dd4c86dca013f6e5e89751352f36d.html
URL
http://blog.cinu.pl/2015/11/php-static-code-analysis-vs-top-1000-wordpress-plugins.html

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
c44c756d-8f06-4822-97c9-0a4f8024d99d

Timeline

Publicly Published
2015-07-04 (about 10 years ago)
Added
2015-11-24 (about 10 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2016-06-20
Title
Jetpack <= 4.0.3 - Multiple Vulnerabilities
Published
2015-03-17
Title
Import any XML or CSV File to WordPress <= 3.2.4 - Multiple Vulnerabilities
Published
2019-05-13
Title
Ultimate Member < 2.0.46 - Multiple Vulnerabilities
Published
2016-05-18
Title
Fluid Responsive Slideshow < 2.2.7 - CSRF & XSS
Published
2016-03-07
Title
SP Projects & Document Manager < 2.6.0.0 - Multiple Vulnerabilities