Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
links vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2017-14838
TeamWork Job Links allows Arbitrary File Upload in profileChange and coverChange.
Teamworktec Job Links -
1 EDB exploit
7.5
CVSSv2
CVE-2008-3580
Multiple SQL injection vulnerabilities in Qsoft K-Links allow remote malicious users to execute arbitrary SQL commands via (1) the id parameter to visit.php, or the PATH_INFO to the default URI under (2) report/, (3) addreview/, or (4) refer/.
Qsoft K-links
1 EDB exploit
4.3
CVSSv2
CVE-2008-3581
Cross-site scripting (XSS) vulnerability in index.php in Qsoft K-Links allows remote malicious users to inject arbitrary web script or HTML via the login_message parameter in a login action.
Qsoft K-links
1 EDB exploit
4
CVSSv2
CVE-2020-4026
The CustomAppsRestResource list resource in Atlassian Navigator Links before version 3.3.23, from version 4.0.0 before version 4.3.7, from version 5.0.0 prior to 5.0.1, and from version 5.1.0 prior to 5.1.1 allows remote malicious users to enumerate all linked applications, inclu...
Atlassian Navigator Links
4.3
CVSSv2
CVE-2017-16860
The invalidRedirectUrl template in Atlassian Application Links before version 5.2.7, from version 5.3.0 before version 5.3.4 and from version 5.4.0 before version 5.4.3 allows remote malicious users to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerabi...
Atlassian Application Links
4.3
CVSSv2
CVE-2015-9472
The incoming-links plugin prior to 0.9.10b for WordPress has referrers.php XSS via the Referer HTTP header.
Monitorbacklinks Incoming Links
7.5
CVSSv2
CVE-2007-1339
SQL injection vulnerability in index.php in Links Management Application 1.0 allows remote malicious users to execute arbitrary SQL commands via the lcnt parameter.
Monitor-line Links Management
1 EDB exploit
NA
CVE-2023-0375
The Easy Affiliate Links WordPress plugin prior to 3.7.1 does not validate and escape some of its block options before outputting them back in a page/post where the block is embedded, which could allow users with the contributor role and above to perform Stored Cross-Site Scripti...
Bootstrapped Easy Affiliate Links
7.5
CVSSv2
CVE-2006-6645
PHP remote file inclusion vulnerability in language/lang_english/lang_admin.php in the Web Links (mx_links) 2.05 and previous versions module for mxBB allows remote malicious users to execute arbitrary PHP code via a URL in the mx_root_path parameter.
Mxbb Mxbb Web Links
1 EDB exploit
NA
CVE-2023-35097
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Internet Marketing Dojo WP Affiliate Links plugin <= 0.1.1 versions.
Dojo Wp Affiliate Links
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »