Threat Entry Updated 2025-06-06

CVE-2023-7231 - Illi Link Party Plugin

The illi Link Party! WordPress plugin through 1.0 lacks proper access controls, allowing unauthenticated visitors to delete links.

PLUGIN Illi Link Party

CVE-2023-7231

HIGH CVSS 7.3 2025-05-15

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2025-05-27

CVE-2023-7230 - Illi Link Party Plugin

The illi Link Party! WordPress plugin through 1.0 does not sanitize and escape some parameters, which could allow users with a role as low as admin to perform Cross-Site Scripting attacks.

PLUGIN Illi Link Party

CVE-2023-7230

MEDIUM CVSS 6.1 2025-05-15

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2025-05-28

CVE-2023-7228 - Illi Link Party Plugin

The illi Link Party! WordPress plugin through 1.0 does not sanitise and escape some parameters, which could allow unauthenticated vistors to perform Cross-Site Scripting attacks.

PLUGIN Illi Link Party

CVE-2023-7228

MEDIUM CVSS 6.1 2025-05-15

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2025-05-27

CVE-2023-7229 - Illi Link Party Plugin

The illi Link Party! WordPress plugin through 1.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack.

PLUGIN Illi Link Party

CVE-2023-7229

MEDIUM CVSS 5.5 2025-05-15

Risk Score

Open Full Technical Breakdown