Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
links vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2006-2585
SQL injection vulnerability in Destiney Links Script 2.1.2 allows remote malicious users to execute arbitrary SQL commands via the ID parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Greg Donald Destiney Links Script 2.1.2
6.8
CVSSv2
CVE-2006-4327
Multiple cross-site scripting (XSS) vulnerabilities in add_url.php in CloudNine Interactive Links Manager 2006-06-12 allow remote malicious users to inject arbitrary web script or HTML via the (1) title, (2) description, or (3) keywords parameters.
Cloudnine Interactive Links Manager 2006-06-12
5.1
CVSSv2
CVE-2006-4328
SQL injection vulnerability in admin.php in CloudNine Interactive Links Manager 2006-06-12, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the nick parameter.
Cloudnine Interactive Links Manager 2006-06-12
7.5
CVSSv2
CVE-2010-2626
index.pl in Miyabi CGI Tools SEO Links 1.02 allows remote malicious users to execute arbitrary commands via shell metacharacters in the fn command. NOTE: some of these details are obtained from third party information.
Miyabi-seo Cgi Tools Seo Links 1.02
1 EDB exploit
1 Github repository
7.5
CVSSv2
CVE-2008-4378
SQL injection vulnerability in report.php in Mr. CGI Guy Hot Links SQL-PHP 3.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Mr. Cgi Guy Hot Links Sql Php
1 EDB exploit
4.3
CVSSv2
CVE-2008-4379
Cross-site scripting (XSS) vulnerability in report.php in Mr. CGI Guy Hot Links SQL-PHP 3.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Mr. Cgi Guy Hot Links Sql Php
1 EDB exploit
7.5
CVSSv2
CVE-2009-4584
admin.php in dB Masters Multimedia Links Directory 3.1.3 allows remote malicious users to bypass authentication and gain administrative access via a certain value of the admin_log cookie.
Dbmasters Db Masters Multimedia Links Directory 3.1.3
4.3
CVSSv2
CVE-2022-1582
The External Links in New Window / New Tab WordPress plugin prior to 1.43 does not properly escape URLs it concatenates to onclick event handlers, which makes Stored Cross-Site Scripting attacks possible.
Webfactoryltd External Links In New Window \\/ New Tab
4.3
CVSSv2
CVE-2022-1583
The External Links in New Window / New Tab WordPress plugin prior to 1.43 does not ensure window.opener is set to "null" when links to external sites are clicked, which may enable tabnabbing attacks to occur.
Webfactoryltd External Links In New Window \\/ New Tab
7.5
CVSSv2
CVE-2008-5804
SQL injection vulnerability in admin/admin_catalog.php in e-topbiz Number Links 1 Php Script allows remote malicious users to execute arbitrary SQL commands via the id parameter in an edit action.
E-topbiz Number Links 1 Php Script Nil
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »