Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web links module vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-0879
SQL injection vulnerability in modules.php in the Web_Links module for PHP-Nuke allows remote malicious users to execute arbitrary SQL commands via the cid parameter in a viewlink action.
Phpnuke Web Links Module
1 EDB exploit
7.5
CVSSv2
CVE-2010-5083
SQL injection vulnerability in the Web_Links module for PHP-Nuke 8.0 allows remote malicious users to execute arbitrary SQL commands via the url parameter in an Add action to modules.php.
Phpnuke Php-nuke 8.0
Phpnuke Web Links Module -
1 EDB exploit
3.5
CVSSv2
CVE-2015-5497
Cross-site scripting (XSS) vulnerability in the Web Links module 6.x-2.x prior to 6.x-2.6 and 7.x-1.x prior to 7.x-1.0 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors.
Web Links Project Web Links 6.x-2.0
Web Links Project Web Links 7.x-1.0
Web Links Project Web Links 7.x-1.x
Web Links Project Web Links 6.x-2.5
Web Links Project Web Links 6.x-2.4
Web Links Project Web Links 6.x-2.2
Web Links Project Web Links 6.x-2.3
Web Links Project Web Links 6.x-2.1
7.5
CVSSv2
CVE-2006-6645
PHP remote file inclusion vulnerability in language/lang_english/lang_admin.php in the Web Links (mx_links) 2.05 and previous versions module for mxBB allows remote malicious users to execute arbitrary PHP code via a URL in the mx_root_path parameter.
Mxbb Mxbb Web Links
1 EDB exploit
2.6
CVSSv2
CVE-2015-4388
Cross-site scripting (XSS) vulnerability in the Current Search Links module 7.x-1.x prior to 7.x-1.1 for Drupal, when the "Append the keywords passed by the user to the list" option is disabled, allows remote malicious users to inject arbitrary web script or HTML via a ...
Current Search Links Project Current Search Links 7.x-1.x-dev
Current Search Links Project Current Search Links 7.x-1.0
4.3
CVSSv2
CVE-2021-45034
A vulnerability has been identified in CP-8000 MASTER MODULE WITH I/O -25/+70°C (All versions < V16.20), CP-8000 MASTER MODULE WITH I/O -40/+70°C (All versions < V16.20), CP-8021 MASTER MODULE (All versions < V16.20), CP-8022 MASTER MODULE WITH GPRS (All versions...
Siemens Cp-8000 Master Module With I\\/o -25\\/\\+70 Firmware
Siemens Cp-8000 Master Module With I\\/o -40\\/\\+70 Firmware
Siemens Cp-8021 Master Module Firmware
Siemens Cp-8022 Master Module With Gprs Firmware
3.5
CVSSv2
CVE-2009-2610
Cross-site scripting (XSS) vulnerability in the Links Related module in the Links Package 5.x prior to 5.x-1.13 and 6.x prior to 6.x-1.2, a module for Drupal, allows remote authenticated users to inject arbitrary web script or HTML via the title field.
Scott Courtney Links Package 6.x-1.0-beta1
Scott Courtney Links Package 6.x-1.0-beta2
Scott Courtney Links Package 6.x-1.0-beta3
Scott Courtney Links Package 6.x-1.0-beta5
Scott Courtney Links Package 5.x-1.11
Scott Courtney Links Package 5.x-1.x-dev
Scott Courtney Links Package 5.x-1.9
Scott Courtney Links Package 5.x-1.8
Scott Courtney Links Package 6.x-1.0-beta11
Scott Courtney Links Package 6.x-1.0-beta12
Scott Courtney Links Package 6.x-1.0-beta13
Scott Courtney Links Package 6.x-1.0-beta14
Scott Courtney Links Package 5.x-1.12-beta1
Scott Courtney Links Package 5.x-1.7
Scott Courtney Links Package 5.x-1.5
Scott Courtney Links Package 5.x-1.2
Scott Courtney Links Package 6.x-1.0-beta6
Scott Courtney Links Package 6.x-1.x-dev
Scott Courtney Links Package 6.x-1.0
Scott Courtney Links Package 5.x-1.12
Scott Courtney Links Package 5.x-1.6
Scott Courtney Links Package 5.x-1.4
4.3
CVSSv2
CVE-2009-4525
Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 5.x prior to 5.x-4.9 and 6.x prior to 6.x-1.9, a module for Drupal, allows remote malicious users to inject arbitrary web script or HTML via crafted data in a list of links.
Joao Ventura Print 5.x-4.7
Joao Ventura Print 5.x-4.2
Joao Ventura Print 5.x-4.1
Joao Ventura Print 6.x-1.5
Joao Ventura Print 6.x-1.6
Joao Ventura Print 6.x-1.7
Joao Ventura Print 6.x-1.0
Joao Ventura Print 5.x-4.5
Joao Ventura Print 5.x-4.4
Joao Ventura Print 6.x-1.1
Joao Ventura Print 6.x-1.2
Joao Ventura Print 5.x-4.8
Joao Ventura Print 5.x-4.6
Joao Ventura Print 5.x-4.0
Joao Ventura Print 6.x-1.x
Joao Ventura Print 5.x-4.3
Joao Ventura Print 5.x-4.x
Joao Ventura Print 6.x-1.3
Joao Ventura Print 6.x-1.4
7.1
CVSSv2
CVE-2014-2107
Cisco IOS 12.2 and 15.0 up to and including 15.3, when used with the Kailash FPGA prior to 2.6 on RSP720-3C-10GE and RSP720-3CXL-10GE devices, allows remote malicious users to cause a denial of service (route switch processor outage) via crafted IP packets, aka Bug ID CSCug84789.
Cisco Ios 15.3
Cisco Ios 15.2
Cisco Ios 15.1
Cisco Ios 15.0
Cisco Ios 12.2
Cisco Ios 15.0\\(1\\)se
3.5
CVSSv2
CVE-2012-2309
Cross-site scripting (XSS) vulnerability in the Glossify Internal Links Auto SEO module for Drupal 6.x-2.5 and previous versions allows remote authenticated users with certain roles to inject arbitrary web script or HTML via unspecified vectors.
Wearepropeople Glossify Internal Links Auto Seo
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »