cleantalk
Vulnerabilities and Security Researches

Link Whisper Free, CVE-2025-62970

CVE, Research URL

CVE-2025-62970

Home page URL

Security reports for Link Whisper Free

Application

Link Whisper Free

Published on
Oct 27, 2025
Research Description
Missing Authorization vulnerability in Spencer Haws Link Whisper Free link-whisper allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Link Whisper Free: from n/a through <= 0.8.8.
Affected versions
max 0.8.8.
Status
vulnerable
Previous vulnerability researches
Post Grid, Slider &amp; Carousel Ultimate &#8211; with Shortcode, Gutenberg Block &amp; Elementor Widget (CVE-2025-24782) , Jan 29, 2025
Post Grid, Slider &amp; Carousel Ultimate &#8211; with Shortcode, Gutenberg Block &amp; Elementor Widget (CVE-2024-13408) , Jan 26, 2025
Post Grid, Slider &amp; Carousel Ultimate &#8211; with Shortcode, Gutenberg Block &amp; Elementor Widget (CVE-2024-13409) , Jan 26, 2025
Post Grid, Slider &amp; Carousel Ultimate &#8211; with Shortcode, Gutenberg Block &amp; Elementor Widget (CVE-2022-1266) , Jun 06, 2024
Post Grid, Slider &amp; Carousel Ultimate &#8211; with Shortcode, Gutenberg Block &amp; Elementor Widget (CVE-2024-29925) , Jun 06, 2024
New vulnerability
Top Bar Notification (CVE-2025-12412) , Nov 10, 2025
WP Travel Engine &#8211; Best Travel Booking WordPress Plugin (CVE-2025-7526) , Nov 10, 2025
WP Travel Engine &#8211; Best Travel Booking WordPress Plugin (CVE-2025-7634) , Nov 10, 2025
Podlove Web Player (CVE-2025-62908) , Nov 10, 2025
Simple Content Templates for Blog Posts &amp; Pages (CVE-2025-62958) , Nov 10, 2025