Linkwhisper: Security Vulnerabilities
The Link Whisper Free WordPress plugin before 0.9.1 has a publicly accessible REST endpoint that allows unauthenticated settings updates.
CVSS Score
6.5
EPSS Score
0.0
Published
2026-04-07
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Link Whisper Link Whisper Free.This issue affects Link Whisper Free: from n/a through 0.6.5.
CVSS Score
8.5
EPSS Score
0.001
Published
2023-12-20