cleantalk
Vulnerabilities and Security Researches

WordPress Internal Link Optimiser, CVE-2025-39547

CVE, Research URL

CVE-2025-39547

Home page URL

Security reports for WordPress Internal Link Optimiser

Application

WordPress Internal Link Optimiser

Published on
Apr 16, 2025
Research Description
WordPress Internal Link Optimiser [internal-link-finder] < 5.1.4 CVE-2025-39547 [en] Cross-Site Request Forgery (CSRF) vulnerability in Toast Plugins Internal Link Optimiser allows Stored XSS. This issue affects Internal Link Optimiser: from n/a through 5.1.3.
Affected versions
Min -, max 5.1.4.
Status
vulnerable
Previous vulnerability researches
Sensei LMS &#8211; Online Courses, Quizzes, &amp; Learning (CVE-2023-50875) , Jun 06, 2024
Sensei LMS &#8211; Online Courses, Quizzes, &amp; Learning (CVE-2022-2034) , Jun 06, 2024
Sensei LMS &#8211; Online Courses, Quizzes, &amp; Learning (CVE-2022-2080) , Jun 06, 2024
Sensei LMS &#8211; Online Courses, Quizzes, &amp; Learning (CVE-2025-22740) , Apr 01, 2025
Sensei LMS &#8211; Online Courses, Quizzes, &amp; Learning (CVE-2024-35686) , Jun 11, 2024
New vulnerability
WP Logger (CVE-2025-39456) , Apr 20, 2025
visualslider Sldier (CVE-2025-23448) , Apr 20, 2025
RSS Manager (CVE-2025-39418) , Apr 20, 2025
Contact Form vCard Generator (CVE-2025-39521) , Apr 20, 2025
AdminQuickbar (CVE-2025-39464) , Apr 20, 2025