Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
links vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2015-9495
The syndication-links plugin prior to 1.0.3 for WordPress has XSS via the genericons/example.html anchor identifier.
Syndication Links Project Syndication Links
NA
CVE-2005-3697
Unspecified vulnerability in the administration interface in Uresk Links 2.0 Lite allows remote malicious users to bypass authentication via unspecified vectors in index.php.
Uresk Links Uresk Links 2.0 Lite
NA
CVE-2007-5598
Cross-site scripting (XSS) vulnerability in Weblinks for Drupal 4.7.x prior to 4.7.x-1.0 and 5.x prior to 5.x-1.8 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Web Links Project Web Links
NA
CVE-2013-6050
Integer overflow in Links prior to 2.8 allows remote malicious users to cause a denial of service (crash) via crafted HTML tables.
Twibright Links 2.7
Twibright Links
NA
CVE-2014-5317
Cross-site scripting (XSS) vulnerability in php365.com 365 Links 3.11 and previous versions, 365 Links2 3.11 and previous versions, 365 Links+ 2.10 and previous versions, and 365 Links2+ 2.10 and previous versions allows remote malicious users to inject arbitrary web script or HT...
Php365 365 Links
Php365 365 Links\\+
Php365 365 Links2
Php365 365 Links 2\\+
NA
CVE-2006-5925
Links web browser 1.00pre12 and Elinks 0.9.2 with smbclient installed allows remote malicious users to execute arbitrary code via shell metacharacters in an smb:// URI, as demonstrated by using PUT and GET statements.
Links Links 1.00pre12
Elinks Elinks 0.9.2
2 EDB exploits
NA
CVE-2015-4388
Cross-site scripting (XSS) vulnerability in the Current Search Links module 7.x-1.x prior to 7.x-1.1 for Drupal, when the "Append the keywords passed by the user to the list" option is disabled, allows remote malicious users to inject arbitrary web script or HTML via a ...
Current Search Links Project Current Search Links 7.x-1.x-dev
Current Search Links Project Current Search Links 7.x-1.0
5.4
CVSSv3
CVE-2023-22720
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Robert Macchi WP Links Page plugin <= 4.9.3 versions.
Wp Links Page Project Wp Links Page
4.9
CVSSv3
CVE-2019-20105
The EditApplinkServlet resource in the Atlassian Application Links plugin before version 5.4.20, from version 6.0.0 before version 6.0.12, from version 6.1.0 before version 6.1.2, from version 7.0.0 before version 7.0.1, and from version 7.1.0 before version 7.1.3 allows remote a...
Atlassian Application Links
Atlassian Application Links 7.0.0
5.4
CVSSv3
CVE-2022-1759
The RB Internal Links WordPress plugin up to and including 2.0.16 does not have CSRF check in place when updating its settings, which could allow malicious users to make a logged in admin change them via a CSRF attack, as well as perform Stored Cross-Site Scripting attacks due to...
Rb Internal Links Project Rb Internal Links
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »