Vulnerabilities and security researches forinternal-link-finder internal-link-finder

Apr 11, 2025

CVE, Research URL: CVE-2025-32243
Home page URL: Security reports for WordPress Internal Link Optimiser
Application: WordPress Internal Link Optimiser
Date: Apr 10, 2025
Research Description: Missing Authorization vulnerability in Toast Plugins Internal Link Optimiser allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Internal Link Optimiser: from n/a through 5.1.2.
Affected versions: Min -, max -.
Status: vulnerable

Apr 18, 2025

CVE, Research URL: CVE-2025-39547
Home page URL: Security reports for WordPress Internal Link Optimiser
Application: WordPress Internal Link Optimiser
Date: Apr 16, 2025
Research Description: WordPress Internal Link Optimiser [internal-link-finder] < 5.1.4 CVE-2025-39547 [en] Cross-Site Request Forgery (CSRF) vulnerability in Toast Plugins Internal Link Optimiser allows Stored XSS. This issue affects Internal Link Optimiser: from n/a through 5.1.3.
Affected versions: Min -, max -.
Status: vulnerable