cleantalk
Vulnerabilities and Security Researches

Connections Business Directory, 65eca907891dbfcf2681a4520081683ffbef5d93

CVE, Research URL

65eca907891dbfcf2681a4520081683ffbef5d93

Home page URL

Security reports for Connections Business Directory

Application

Connections Business Directory

Published on
Feb 20, 2014
Research Description
Connections Business Directory [connections] < 0.7.9.4 (closed) Connections Business Directory < 0.7.9.4 - Cross-Site Scripting The Connections Business Directory for WordPress is vulnerable to Reflected Cross-Site Scripting via an unknown parameter in versions up to, and including, 0.7.9.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
Affected versions
max 0.7.9.4.
Status
vulnerable
Previous vulnerability researches
Connections Business Directory (CVE-2011-5254) , Jun 06, 2024
Connections Business Directory (CVE-2023-29437) , Jun 06, 2024
Connections Business Directory (CVE-2020-36503) , Jun 06, 2024
Connections Business Directory (CVE-2016-0770) , Jun 06, 2024
Connections Business Directory (CVE-2021-24794) , Jun 06, 2024
New vulnerability
WP SMS &#8211; Messaging &amp; SMS Notification for WordPress, WooCommerce, GravityForms, etc (c9038d9e6e459de1ff8abd00bd5a0f71e49ef5d8) , Jun 16, 2026
WP SMS &#8211; Messaging &amp; SMS Notification for WordPress, WooCommerce, GravityForms, etc (9f80d9ea-e4ce-4957-9b22-3464446ab003) , Jun 16, 2026
WP SMS &#8211; Messaging &amp; SMS Notification for WordPress, WooCommerce, GravityForms, etc (95230c961ea7801737904d6245f3fe862829cb0d) , Jun 16, 2026
WP SMS &#8211; Messaging &amp; SMS Notification for WordPress, WooCommerce, GravityForms, etc (66d2a48446049f0a84abb0461d3eee433fdde3d1) , Jun 16, 2026
Featured Post with thumbnail (1c4bc9a7-b70a-4e00-bca3-ef46763559a3) , Jun 16, 2026