cleantalk
Vulnerabilities and Security Researches

Simple Link Directory, CVE-2026-53742

CVE, Research URL

CVE-2026-53742

Home page URL

Security reports for Simple Link Directory

Application

Simple Link Directory

Published on
Jun 11, 2026
Research Description
Simple Link Directory through 9.0.4 echoes embed shortcode attributes into HTML data attributes without escaping in the embedder template. Attackers with contributor access can craft a shortcode attribute that injects an event handler executing in a viewer's browser.
Affected versions
max 9.0.4.
Status
vulnerable
Previous vulnerability researches
Add Any Extension to Pages (214b59c3-5411-4137-b1a7-3bba417e495b) , Jun 07, 2024
Add Any Extension to Pages (CVE-2023-50873) , Jun 07, 2024
New vulnerability
Easy Image Collage (CVE-2026-9019) , Jun 12, 2026
Stop WP Emails Going to Spam (CVE-2023-33999) , Jun 12, 2026
Duplicate Post (CVE-2026-53738) , Jun 12, 2026
Schema & Structured Data for WP & AMP (CVE-2026-9067) , Jun 12, 2026
RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login (CVE-2026-49764) , Jun 12, 2026