{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-12629", "assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "state": "PUBLISHED", "assignerShortName": "WPScan", "dateReserved": "2025-11-03T10:33:43.580Z", "datePublished": "2025-11-24T06:00:07.220Z", "dateUpdated": "2026-04-02T12:39:52.225Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "shortName": "WPScan", "dateUpdated": "2026-04-02T12:39:52.225Z"}, "title": "Broken Link Manager <= 0.6.5 - Reflected XSS", "problemTypes": [{"descriptions": [{"description": "CWE-79 Cross-Site Scripting (XSS)", "lang": "en", "type": "CWE"}]}], "affected": [{"vendor": "Unknown", "product": "Broken Link Manager", "versions": [{"status": "affected", "versionType": "semver", "version": "0", "lessThanOrEqual": "0.6.5"}], "defaultStatus": "unknown"}], "descriptions": [{"lang": "en", "value": "The Broken Link Manager WordPress plugin through 0.6.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin"}], "references": [{"url": "https://wpscan.com/vulnerability/528e9775-3a2d-4e52-92f7-f123ad787e7d/", "tags": ["exploit", "vdb-entry", "technical-description"]}], "credits": [{"lang": "en", "value": "Yousof Nahya", "type": "finder"}, {"lang": "en", "value": "WPScan", "type": "coordinator"}], "source": {"discovery": "EXTERNAL"}, "x_generator": {"engine": "WPScan CVE Generator"}}, "adp": [{"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2025-11-24T10:52:40.562499Z", "id": "CVE-2025-12629", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-11-24T10:52:46.566Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-12629", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-11-24T10:52:40.562499Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-11-24T10:52:30.457Z"}}], "cna": {"title": "Broken Link Manager <= 0.6.5 - Reflected XSS", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Yousof Nahya"}, {"lang": "en", "type": "coordinator", "value": "WPScan"}], "affected": [{"vendor": "Unknown", "product": "Broken Link Manager", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "0.6.5"}], "defaultStatus": "unknown"}], "references": [{"url": "https://wpscan.com/vulnerability/528e9775-3a2d-4e52-92f7-f123ad787e7d/", "tags": ["exploit", "vdb-entry", "technical-description"]}], "x_generator": {"engine": "WPScan CVE Generator"}, "descriptions": [{"lang": "en", "value": "The Broken Link Manager WordPress plugin through 0.6.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "description": "CWE-79 Cross-Site Scripting (XSS)"}]}], "providerMetadata": {"orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "shortName": "WPScan", "dateUpdated": "2026-04-02T12:39:52.225Z"}}}, "cveMetadata": {"cveId": "CVE-2025-12629", "state": "PUBLISHED", "dateUpdated": "2026-04-02T12:39:52.225Z", "dateReserved": "2025-11-03T10:33:43.580Z", "assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "datePublished": "2025-11-24T06:00:07.220Z", "assignerShortName": "WPScan"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Broken Link Manager WordPress plugin through 0.6.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin"}], "id": "CVE-2025-12629", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.7, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2025-11-24T06:15:46.180", "references": [{"source": "contact@wpscan.com", "url": "https://wpscan.com/vulnerability/528e9775-3a2d-4e52-92f7-f123ad787e7d/"}], "sourceIdentifier": "contact@wpscan.com", "vulnStatus": "Deferred"}

{}

{"analysis": {"en": {"generated_at": "2026-04-28T10:21:20.185489+00:00", "value": {"mitigation_remediation": ["Install the latest version of the Broken Link Manager plugin, which sanitizes the vulnerable parameter, or uninstall the plugin entirely if no update is available.", "If an upgrade cannot be performed immediately, restrict the plugin\u2019s output by applying a strict content\u2011security\u2011policy that blocks inline scripts on the site.", "Add a WordPress filter or use a security plugin that validates and escapes all user\u2011controlled query parameters before rendering them, thereby preventing the injection of malicious script."], "summary": {"action": "Update Plugin", "impact": "Reflected Cross\u2011Site Scripting"}, "threat_synthesis": {"affected_systems": "WordPress sites that use the Broken Link Manager plugin version 0.6.5 or earlier are affected. The issue applies to any installation of the plugin that has not been upgraded beyond this release.", "description_and_impact": "The Broken Link Manager WordPress plugin up to version 0.6.5 fails to sanitize and escape a query parameter before rendering it on the page, creating a reflected cross\u2011site scripting vulnerability. An attacker can embed arbitrary JavaScript in the vulnerable parameter and cause it to execute in the browser of any user who views the crafted URL. Because the target user may be a site administrator, the flaw can be used to hijack an admin session, steal privileged data, or perform other malicious actions within that user\u2019s authority.", "risk_and_exploitability": "The CVSS score of 7.1 indicates high severity for this reflected XSS. The EPSS score of less than 1 percent suggests the vulnerability is currently unlikely to be widely exploited, and it is not listed in the CISA KEV catalog. Exploitation requires an attacker to craft a malicious link that includes the unsanitized parameter and entice a high\u2011privilege user, such as an administrator, to visit it. If the user\u2019s session is compromised, the attacker can gain temporary high\u2011level access to the site. The attack surface is limited to users who click the crafted URL, but the potential impact for privileged accounts is significant."}}}}, "created": "2025-11-25T11:02:33.236348+00:00", "updated": "2026-04-28T10:30:29.014179+00:00", "vendors": ["k-78", "k-78$PRODUCT$broken_link_manager", "wordpress", "wordpress$PRODUCT$wordpress"], "weaknesses": ["CWE-79"]}