Avovkdesign: >> Hide Links Security Vulnerabilities
The Hide Links plugin for WordPress is vulnerable to unauthorized shortcode execution due to do_shortcode being hooked through the comment_text filter in all versions up to and including 1.4.2. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes available on the target site.
CVSS Score
5.3
EPSS Score
0.021
Published
2024-11-13