cleantalk
Vulnerabilities and Security Researches

Links shortcode, CVE-2025-62898

CVE, Research URL

CVE-2025-62898

Home page URL

Security reports for Links shortcode

Application

Links shortcode

Published on
Oct 27, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Maarten Links shortcode links-shortcode allows Stored XSS.This issue affects Links shortcode: from n/a through <= 1.8.3.
Affected versions
max 1.8.3.
Status
vulnerable
Previous vulnerability researches
Zip Attachments (CVE-2015-4694) , Jun 07, 2024
Zip Attachments (CVE-2025-11692) , Nov 10, 2025
Zip Attachments (CVE-2025-11701) , Nov 10, 2025
New vulnerability
Off-Canvas Sidebars &amp; Menus (Slidebars) (CVE-2025-62891) , Nov 11, 2025
LLM Hubspot Blog Import (CVE-2025-11257) , Nov 11, 2025
AI ChatBot (CVE-2025-62952) , Nov 11, 2025
Pie Calendar (CVE-2025-62024) , Nov 11, 2025
Demo Import Kit (CVE-2025-10051) , Nov 11, 2025