Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
autolinks vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2022-1112
The Autolinks WordPress plugin up to and including 1.0.1 does not have CSRF check in place when updating its settings, and does not sanitise as well as escape them, which could allow malicious users to perform Stored Cross-Site scripting against a logged in admin via a CSRF attac...
Autolinks Project Autolinks
NA
CVE-2005-2782
PHP remote file inclusion vulnerability in al_initialize.php for AutoLinks Pro 2.1 allows remote malicious users to execute arbitrary PHP code via an "ftp://" URL in the alpath parameter, which bypasses the incomplete blacklist that only checks for "http" and ...
Autolinks Autolinks 2.1
1 EDB exploit
8.8
CVSSv3
CVE-2023-46625
Cross-Site Request Forgery (CSRF) vulnerability in DAEXT Autolinks Manager plugin <= 1.10.04 versions.
Daext Autolinks Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcoded
arbitrary code
CVE-2024-2404
CVE-2024-21111
CVE-2024-28627
CVE-2024-4073
information disclosure
CVE-2024-32780
CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started