Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
links vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2013-6050
Integer overflow in Links prior to 2.8 allows remote malicious users to cause a denial of service (crash) via crafted HTML tables.
Twibright Links 2.7
Twibright Links
4.3
CVSSv2
CVE-2015-9495
The syndication-links plugin prior to 1.0.3 for WordPress has XSS via the genericons/example.html anchor identifier.
Syndication Links Project Syndication Links
4.3
CVSSv2
CVE-2016-4833
Cross-site scripting (XSS) vulnerability in the Nofollow Links plugin prior to 1.0.11 for WordPress allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Nofollow Links Project Nofollow Links
7.5
CVSSv2
CVE-2005-3697
Unspecified vulnerability in the administration interface in Uresk Links 2.0 Lite allows remote malicious users to bypass authentication via unspecified vectors in index.php.
Uresk Links Uresk Links 2.0 Lite
4.3
CVSSv2
CVE-2014-5317
Cross-site scripting (XSS) vulnerability in php365.com 365 Links 3.11 and previous versions, 365 Links2 3.11 and previous versions, 365 Links+ 2.10 and previous versions, and 365 Links2+ 2.10 and previous versions allows remote malicious users to inject arbitrary web script or HT...
Php365 365 Links
Php365 365 Links\\+
Php365 365 Links2
Php365 365 Links 2\\+
7.5
CVSSv2
CVE-2006-5925
Links web browser 1.00pre12 and Elinks 0.9.2 with smbclient installed allows remote malicious users to execute arbitrary code via shell metacharacters in an smb:// URI, as demonstrated by using PUT and GET statements.
Links Links 1.00pre12
Elinks Elinks 0.9.2
2 EDB exploits
2.6
CVSSv2
CVE-2015-4388
Cross-site scripting (XSS) vulnerability in the Current Search Links module 7.x-1.x prior to 7.x-1.1 for Drupal, when the "Append the keywords passed by the user to the list" option is disabled, allows remote malicious users to inject arbitrary web script or HTML via a ...
Current Search Links Project Current Search Links 7.x-1.x-dev
Current Search Links Project Current Search Links 7.x-1.0
NA
CVE-2022-3135
The SEO Smart Links WordPress plugin up to and including 3.0.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for exampl...
Seo Smart Links Project Seo Smart Links
7.5
CVSSv2
CVE-2008-2529
SQL injection vulnerability in read.php in Advanced Links Management (ALM) 1.5.2 allows remote malicious users to execute arbitrary SQL commands via the catId parameter.
Advanced Links Management Advanced Links Management 1.5.2
1 EDB exploit
3.5
CVSSv2
CVE-2022-1759
The RB Internal Links WordPress plugin up to and including 2.0.16 does not have CSRF check in place when updating its settings, which could allow malicious users to make a logged in admin change them via a CSRF attack, as well as perform Stored Cross-Site Scripting attacks due to...
Rb Internal Links Project Rb Internal Links
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »