Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

web links module vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv2
CVE-2008-0879
SQL injection vulnerability in modules.php in the Web_Links module for PHP-Nuke allows remote malicious users to execute arbitrary SQL commands via the cid parameter in a viewlink action.
Phpnuke Web Links Module
7.5
CVSSv2
CVE-2010-5083
SQL injection vulnerability in the Web_Links module for PHP-Nuke 8.0 allows remote malicious users to execute arbitrary SQL commands via the url parameter in an Add action to modules.php.
Phpnuke Php-nuke 8.0Phpnuke Web Links Module -
3.5
CVSSv2
CVE-2015-5497
Cross-site scripting (XSS) vulnerability in the Web Links module 6.x-2.x prior to 6.x-2.6 and 7.x-1.x prior to 7.x-1.0 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors.
Web Links Project Web Links 6.x-2.0Web Links Project Web Links 7.x-1.0Web Links Project Web Links 7.x-1.xWeb Links Project Web Links 6.x-2.5Web Links Project Web Links 6.x-2.4Web Links Project Web Links 6.x-2.2Web Links Project Web Links 6.x-2.3Web Links Project Web Links 6.x-2.1
7.5
CVSSv2
CVE-2006-6645
PHP remote file inclusion vulnerability in language/lang_english/lang_admin.php in the Web Links (mx_links) 2.05 and previous versions module for mxBB allows remote malicious users to execute arbitrary PHP code via a URL in the mx_root_path parameter.
Mxbb Mxbb Web Links
2.6
CVSSv2
CVE-2015-4388
Cross-site scripting (XSS) vulnerability in the Current Search Links module 7.x-1.x prior to 7.x-1.1 for Drupal, when the "Append the keywords passed by the user to the list" option is disabled, allows remote malicious users to inject arbitrary web script or HTML via a ...
Current Search Links Project Current Search Links 7.x-1.x-devCurrent Search Links Project Current Search Links 7.x-1.0
4.3
CVSSv2
CVE-2021-45034
A vulnerability has been identified in CP-8000 MASTER MODULE WITH I/O -25/+70°C (All versions < V16.20), CP-8000 MASTER MODULE WITH I/O -40/+70°C (All versions < V16.20), CP-8021 MASTER MODULE (All versions < V16.20), CP-8022 MASTER MODULE WITH GPRS (All versions...
Siemens Cp-8000 Master Module With I\\/o -25\\/\\+70 FirmwareSiemens Cp-8000 Master Module With I\\/o -40\\/\\+70 FirmwareSiemens Cp-8021 Master Module FirmwareSiemens Cp-8022 Master Module With Gprs Firmware
3.5
CVSSv2
CVE-2009-2610
Cross-site scripting (XSS) vulnerability in the Links Related module in the Links Package 5.x prior to 5.x-1.13 and 6.x prior to 6.x-1.2, a module for Drupal, allows remote authenticated users to inject arbitrary web script or HTML via the title field.
Scott Courtney Links Package 6.x-1.0-beta1Scott Courtney Links Package 6.x-1.0-beta2Scott Courtney Links Package 6.x-1.0-beta3Scott Courtney Links Package 6.x-1.0-beta5Scott Courtney Links Package 5.x-1.11Scott Courtney Links Package 5.x-1.x-devScott Courtney Links Package 5.x-1.9Scott Courtney Links Package 5.x-1.8Scott Courtney Links Package 6.x-1.0-beta11Scott Courtney Links Package 6.x-1.0-beta12Scott Courtney Links Package 6.x-1.0-beta13Scott Courtney Links Package 6.x-1.0-beta14Scott Courtney Links Package 5.x-1.12-beta1Scott Courtney Links Package 5.x-1.7Scott Courtney Links Package 5.x-1.5Scott Courtney Links Package 5.x-1.2Scott Courtney Links Package 6.x-1.0-beta6Scott Courtney Links Package 6.x-1.x-devScott Courtney Links Package 6.x-1.0Scott Courtney Links Package 5.x-1.12Scott Courtney Links Package 5.x-1.6Scott Courtney Links Package 5.x-1.4
4.3
CVSSv2
CVE-2009-4525
Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 5.x prior to 5.x-4.9 and 6.x prior to 6.x-1.9, a module for Drupal, allows remote malicious users to inject arbitrary web script or HTML via crafted data in a list of links.
Joao Ventura Print 5.x-4.7Joao Ventura Print 5.x-4.2Joao Ventura Print 5.x-4.1Joao Ventura Print 6.x-1.5Joao Ventura Print 6.x-1.6Joao Ventura Print 6.x-1.7Joao Ventura Print 6.x-1.0Joao Ventura Print 5.x-4.5Joao Ventura Print 5.x-4.4Joao Ventura Print 6.x-1.1Joao Ventura Print 6.x-1.2Joao Ventura Print 5.x-4.8Joao Ventura Print 5.x-4.6Joao Ventura Print 5.x-4.0Joao Ventura Print 6.x-1.xJoao Ventura Print 5.x-4.3Joao Ventura Print 5.x-4.xJoao Ventura Print 6.x-1.3Joao Ventura Print 6.x-1.4
7.1
CVSSv2
CVE-2014-2107
Cisco IOS 12.2 and 15.0 up to and including 15.3, when used with the Kailash FPGA prior to 2.6 on RSP720-3C-10GE and RSP720-3CXL-10GE devices, allows remote malicious users to cause a denial of service (route switch processor outage) via crafted IP packets, aka Bug ID CSCug84789.
Cisco Ios 15.3Cisco Ios 15.2Cisco Ios 15.1Cisco Ios 15.0Cisco Ios 12.2Cisco Ios 15.0\\(1\\)se
3.5
CVSSv2
CVE-2012-2309
Cross-site scripting (XSS) vulnerability in the Glossify Internal Links Auto SEO module for Drupal 6.x-2.5 and previous versions allows remote authenticated users with certain roles to inject arbitrary web script or HTML via unspecified vectors.
Wearepropeople Glossify Internal Links Auto Seo
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook