cleantalk
Vulnerabilities and Security Researches

Pz-LinkCard, CVE-2021-25012

CVE, Research URL

CVE-2021-25012

Home page URL

Security reports for Pz-LinkCard

Application

Pz-LinkCard

Published on
Mar 28, 2022
Research Description
The Pz-LinkCard WordPress plugin through 2.4.4.4 does not sanitise and escape multiple parameters before outputting them back in admin dashboard pages, leading to Reflected Cross-Site Scripting issues
Affected versions
max 2.4.5.3.
Status
vulnerable
Previous vulnerability researches
Pz-LinkCard (CVE-2025-8594) , Nov 10, 2025
Pz-LinkCard (CVE-2024-0672) , Jun 07, 2024
Pz-LinkCard (CVE-2021-25012) , Jun 07, 2024
Pz-LinkCard (CVE-2024-0673) , Jun 07, 2024
Pz-LinkCard (CVE-2023-47790) , Jun 07, 2024
New vulnerability
UNIVERSAM (CVE-2025-60238) , Nov 11, 2025
Microsoft Start (CVE-2025-62931) , Nov 11, 2025
Contact Form by Supsystic (CVE-2025-52753) , Nov 11, 2025
Post Connector (CVE-2025-52741) , Nov 11, 2025
Flights & Hotels Booking WP Plugin (CVE-2025-62916) , Nov 11, 2025