Vulnerabilities > Flowdee

DATE	CVE	VULNERABILITY TITLE	RISK
2025-05-07	CVE-2025-47612	Missing Authorization vulnerability in Flowdee Clickwhale Missing Authorization vulnerability in flowdee ClickWhale allows Exploiting Incorrectly Configured Access Control Security Levels. network low complexity flowdee CWE-862	8.8
2025-02-25	CVE-2025-26963	Cross-Site Request Forgery (CSRF) vulnerability in Flowdee Clickwhale Cross-Site Request Forgery (CSRF) vulnerability in flowdee ClickWhale allows Cross Site Request Forgery. network low complexity flowdee CWE-352	8.8
2025-01-29	CVE-2025-0804	Cross-site Scripting vulnerability in Flowdee Clickwhale The ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages plugin for WordPress is vulnerable to Stored Cross-Site Scripting via link titles in all versions up to, and including, 2.4.1 due to insufficient input sanitization and output escaping. network low complexity flowdee CWE-79	5.4

Vulnerabilities > Flowdee {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Flowdee"}]}