Broken Link Manager CVEs and Security Vulnerabilities - OpenCVE

Filtered by vendor K-78 Subscriptions

Filtered by product Broken Link Manager Subscriptions

Search

Switch to Advanced Search (Beta)

Total 4 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-12629	2 K-78, Wordpress	2 Broken Link Manager, Wordpress	2025-11-25	7.1 High
The Broken Link Manager WordPress plugin through 0.6.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
CVE-2015-9468	1 K-78	1 Broken Link Manager	2024-11-21	6.1 Medium
The broken-link-manager plugin 0.4.5 for WordPress has XSS via the page parameter in a delURL action.
CVE-2015-9467	1 K-78	1 Broken Link Manager	2024-11-21	9.8 Critical
The broken-link-manager plugin before 0.5.0 for WordPress has wpslDelURL or wpslEditURL SQL injection via the url parameter.
CVE-2015-9453	1 K-78	1 Broken Link Manager	2024-11-21	6.1 Medium
The broken-link-manager plugin before 0.6.0 for WordPress has XSS via the HTTP Referer or User-Agent header to a URL that does not exist.

Page 1 of 1.