Wpdeveloper: >> Betterlinks >> 1.0.3 Security Vulnerabilities
Missing Authorization vulnerability in WPDeveloper BetterLinks betterlinks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BetterLinks: from n/a through <= 1.6.0.
CVSS Score
7.3
EPSS Score
0.002
Published
2025-01-02
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPDeveloper BetterLinks betterlinks allows SQL Injection.This issue affects BetterLinks: from n/a through <= 2.1.7.
CVSS Score
7.6
EPSS Score
0.006
Published
2024-11-04
The BetterLinks WordPress plugin before 1.2.6 does not sanitise and escape some of imported link fields, which could lead to Stored Cross-Site Scripting issues when an admin import a malicious CSV.
CVSS Score
5.4
EPSS Score
0.002
Published
2021-11-23