CVE-2025-22306

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Jan 7, 2025

CWE ID 538

Summary

CVE-2025-22306 is a vulnerability affecting Link Whisper Free, where sensitive information can be inserted into externally-accessible files or directories. This issue allows unauthorized users to potentially manipulate data, posing a security risk. The vulnerability exists in Link Whisper Free versions from n/a through 0.7.7. It is essential for users to update their software to mitigate this risk and secure their data.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

WordPress Link Whisper Free

Affected Vendors

LinkWhisper

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/2JM9aI
https://www.cve.org/CVERecord?id=CVE-2025-22306
https://nvd.nist.gov/vuln/detail/CVE-2025-22306

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Submarine Cables Face Increasing Threats Amid Geopolitical Tensions and Limited Repair Capacity

US Violent Extremists Likely Shifting Focus to Targeted Physical Threats in 2025

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Know What Matters

For Customers

For Partners