Wpdeveloper: >> Betterlinks >> 1.0.0 Security Vulnerabilities
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPDeveloper BetterLinks allows SQL Injection.This issue affects BetterLinks: from n/a through 2.1.7.
CVSS Score
7.6
EPSS Score
0.002
Published
2024-11-04
The BetterLinks WordPress plugin before 1.2.6 does not sanitise and escape some of imported link fields, which could lead to Stored Cross-Site Scripting issues when an admin import a malicious CSV.
CVSS Score
5.4
EPSS Score
0.002
Published
2021-11-23