cleantalk
Vulnerabilities and Security Researches

Campaign URL Builder, cf306593fd6b456d6c0e130e3df300859dd3c130

CVE, Research URL

cf306593fd6b456d6c0e130e3df300859dd3c130

Home page URL

Security reports for Campaign URL Builder

Application

Campaign URL Builder

Published on
Feb 16, 2023
Research Description
Campaign URL Builder [campaign-url-builder] < 1.8.2 WordPress Campaign URL Builder Plugin <= 1.8.1 is vulnerable to Cross Site Scripting (XSS) Update the WordPress Campaign URL Builder plugin to the latest available version (at least 1.8.2). WordFence discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Campaign URL Builder Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 1.8.2.
Affected versions
max 1.8.2.
Status
vulnerable
Previous vulnerability researches
SrbTransLatin &#8211; Serbian Latinisation (CVE-2018-5369) , Jun 07, 2024
SrbTransLatin &#8211; Serbian Latinisation (CVE-2018-5368) , Jun 07, 2024
SrbTransLatin &#8211; Serbian Latinisation (CVE-2025-31421) , Apr 05, 2025
SrbTransLatin &#8211; Serbian Latinisation (a848dceb0ab4270e438a59d3678ca4b9f06a90ea) , Jun 16, 2026
New vulnerability
leenk.me (753d31765913b4d2dbb8af0a5512e5f1f8c70c61) , Jun 16, 2026
Social Hashtags (5abd4657-8a58-4d97-b8cb-b67235ab5b8a) , Jun 16, 2026
Social Hashtags (1965c7b04565befbb11c28b56cb6922733a47b03) , Jun 16, 2026
Social Hashtags (a7cf6766582e354e702766a86f85716127d19bdc) , Jun 16, 2026
Simple Calendar &#8211; Google Calendar Plugin (e98a6264-9c5a-417f-b2f8-bd0017b411a0) , Jun 16, 2026