Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
links vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2007-5598
Cross-site scripting (XSS) vulnerability in Weblinks for Drupal 4.7.x prior to 4.7.x-1.0 and 5.x prior to 5.x-1.8 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Web Links Project Web Links
4.3
CVSSv2
CVE-2015-9495
The syndication-links plugin prior to 1.0.3 for WordPress has XSS via the genericons/example.html anchor identifier.
Syndication Links Project Syndication Links
4.3
CVSSv2
CVE-2016-4833
Cross-site scripting (XSS) vulnerability in the Nofollow Links plugin prior to 1.0.11 for WordPress allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Nofollow Links Project Nofollow Links
4.3
CVSSv2
CVE-2013-6050
Integer overflow in Links prior to 2.8 allows remote malicious users to cause a denial of service (crash) via crafted HTML tables.
Twibright Links 2.7
Twibright Links
4.3
CVSSv2
CVE-2014-5317
Cross-site scripting (XSS) vulnerability in php365.com 365 Links 3.11 and previous versions, 365 Links2 3.11 and previous versions, 365 Links+ 2.10 and previous versions, and 365 Links2+ 2.10 and previous versions allows remote malicious users to inject arbitrary web script or HT...
Php365 365 Links
Php365 365 Links\\+
Php365 365 Links2
Php365 365 Links 2\\+
7.5
CVSSv2
CVE-2006-5925
Links web browser 1.00pre12 and Elinks 0.9.2 with smbclient installed allows remote malicious users to execute arbitrary code via shell metacharacters in an smb:// URI, as demonstrated by using PUT and GET statements.
Links Links 1.00pre12
Elinks Elinks 0.9.2
2 EDB exploits
2.6
CVSSv2
CVE-2015-4388
Cross-site scripting (XSS) vulnerability in the Current Search Links module 7.x-1.x prior to 7.x-1.1 for Drupal, when the "Append the keywords passed by the user to the list" option is disabled, allows remote malicious users to inject arbitrary web script or HTML via a ...
Current Search Links Project Current Search Links 7.x-1.x-dev
Current Search Links Project Current Search Links 7.x-1.0
NA
CVE-2022-3135
The SEO Smart Links WordPress plugin up to and including 3.0.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for exampl...
Seo Smart Links Project Seo Smart Links
NA
CVE-2023-22720
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Robert Macchi WP Links Page plugin <= 4.9.3 versions.
Wp Links Page Project Wp Links Page
3.5
CVSSv2
CVE-2022-1759
The RB Internal Links WordPress plugin up to and including 2.0.16 does not have CSRF check in place when updating its settings, which could allow malicious users to make a logged in admin change them via a CSRF attack, as well as perform Stored Cross-Site Scripting attacks due to...
Rb Internal Links Project Rb Internal Links
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »