Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
links vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3580
Multiple SQL injection vulnerabilities in Qsoft K-Links allow remote malicious users to execute arbitrary SQL commands via (1) the id parameter to visit.php, or the PATH_INFO to the default URI under (2) report/, (3) addreview/, or (4) refer/.
Qsoft K-links
1 EDB exploit
NA
CVE-2008-3581
Cross-site scripting (XSS) vulnerability in index.php in Qsoft K-Links allows remote malicious users to inject arbitrary web script or HTML via the login_message parameter in a login action.
Qsoft K-links
1 EDB exploit
NA
CVE-2006-7086
The (1) dlback.php and (2) dlback.cgi scripts in Hot Links allow remote malicious users to obtain sensitive information and download the database via a direct request with a modified dl parameter.
Mrcgiguy Hot Links -
1 EDB exploit
NA
CVE-2008-6720
SQL injection vulnerability in admin/adm_login.php in DeltaScripts PHP Links 1.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the admin_username parameter (aka the admin field).
Deltascripts Php Links
2 EDB exploits
NA
CVE-2008-6032
SQL injection vulnerability in comments.php in WSN Links Free 4.0.34P allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Wsn Links 4.0.34p
1 EDB exploit
NA
CVE-2008-0565
SQL injection vulnerability in vote.php in DeltaScripts PHP Links 1.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Deltascripts Php Links
2 EDB exploits
8.8
CVSSv3
CVE-2017-14838
TeamWork Job Links allows Arbitrary File Upload in profileChange and coverChange.
Teamworktec Job Links -
1 EDB exploit
6.1
CVSSv3
CVE-2015-9472
The incoming-links plugin prior to 0.9.10b for WordPress has referrers.php XSS via the Referer HTTP header.
Monitorbacklinks Incoming Links
5.5
CVSSv3
CVE-2017-11114
The put_chars function in html_r.c in Twibright Links 2.14 allows remote malicious users to cause a denial of service (buffer over-read) via a crafted HTML file.
Twibright Links 2.14
7.2
CVSSv3
CVE-2017-18096
The OAuth status rest resource in Atlassian Application Links before version 5.2.7, from 5.3.0 prior to 5.3.4 and from 5.4.0 prior to 5.4.3 allows remote attackers with administrative rights to access the content of internal network resources via a Server Side Request Forgery (SS...
Atlassian Application Links
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »