Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lynx vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4690
lynx 2.8.6dev.15 and previous versions, when advanced mode is enabled and lynx is configured as a URL handler, allows remote malicious users to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in lim...
Lynx Lynx 2.8.6
Lynx Lynx 2.8.5
Lynx Lynx 2.8.4
Lynx Lynx 2.8.3
Lynx Lynx 2.8.2
Lynx Lynx 2.8.1
Lynx Lynx
NA
CVE-2006-6207
SQL injection vulnerability in products.asp in Evolve shopping cart (aka Evolve Merchant) allows remote malicious users to execute arbitrary SQL commands via the partno parameter. NOTE: the vendor disputes this issue, stating that it is a forced SQL error
Lynx Internet Solutions Evolve Merchant
1 EDB exploit
NA
CVE-2006-5953
SQL injection vulnerability in viewcart.asp in Evolve shopping cart (aka Evolve Merchant) allows remote malicious users to execute arbitrary SQL commands via the zoneid parameter.
Lynx Internet Solutions Evolve Merchant
NA
CVE-2005-2929
Lynx 2.8.5, and other versions prior to 2.8.6dev.15, allows remote malicious users to execute arbitrary commands via (1) lynxcgi:, (2) lynxexec, and (3) lynxprog links, which are not properly restricted in the default configuration in some environments.
University Of Kansas Lynx 2.8.6
University Of Kansas Lynx 2.8.6 Dev13
University Of Kansas Lynx 2.8.5
9.8
CVSSv3
CVE-2005-3120
Stack-based buffer overflow in the HTrjis function in Lynx 2.8.6 and previous versions allows remote NNTP servers to execute arbitrary code via certain article headers containing Asian characters that cause Lynx to add extra escape (ESC) characters.
Invisible-island Lynx
Debian Debian Linux 3.1
Debian Debian Linux 3.0
1 EDB exploit
NA
CVE-2004-1617
Lynx, lynx-ssl, and lynx-cur prior to 2.8.6dev.8 allow remote malicious users to cause a denial of service (infinite loop) via a web page or HTML email that contains invalid HTML including (1) a TEXTAREA tag with a large COLS value and (2) a large tag name in an element that is n...
University Of Kansas Lynx 2.8.3 Dev22
University Of Kansas Lynx 2.8.3 Pre5
University Of Kansas Lynx 2.8.5 Dev4
University Of Kansas Lynx 2.8.5 Dev5
University Of Kansas Lynx 2.7
University Of Kansas Lynx 2.8
University Of Kansas Lynx 2.8.4 Rel1
University Of Kansas Lynx 2.8.5
University Of Kansas Lynx 2.8.1
University Of Kansas Lynx 2.8.2 Rel1
University Of Kansas Lynx 2.8.3
University Of Kansas Lynx 2.8.5 Dev2
University Of Kansas Lynx 2.8.5 Dev3
University Of Kansas Lynx 2.8.3 Rel1
University Of Kansas Lynx 2.8.4
University Of Kansas Lynx 2.8.5 Dev8
NA
CVE-2002-1405
CRLF injection vulnerability in Lynx 2.8.4 and previous versions allows remote malicious users to inject false HTTP headers into an HTTP request that is provided on the command line, via a URL containing encoded carriage return, line feed, and other whitespace characters.
University Of Kansas Lynx 2.8.2 Rel1
University Of Kansas Lynx 2.8.3
Elinks Elinks 0.3.2
Links Links 0.96
Elinks Elinks 0.2.4
University Of Kansas Lynx 2.8.4 Rel1
University Of Kansas Lynx 2.8.5 Dev8
University Of Kansas Lynx 2.8.3 Rel1
University Of Kansas Lynx 2.8.4
1 EDB exploit
NA
CVE-2000-0209
Buffer overflow in Lynx 2.x allows remote malicious users to crash Lynx and possibly execute commands via a long URL in a malicious web page.
University Of Kansas Lynx 2.7
University Of Kansas Lynx 2.8
University Of Kansas Lynx 2.8.3 Dev22
7.8
CVSSv3
CVE-1999-1549
Lynx 2.x does not properly distinguish between internal and external HTML, which may allow a local malicious user to read a "secure" hidden form value from a temporary file and craft a LYNXOPTIONS: URL that causes Lynx to modify the user's configuration file and ex...
Lynx Project Lynx 2.8
Lynx Project Lynx 2.7
NA
CVE-1999-0817
Lynx WWW client allows a remote malicious user to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet.
University Of Kansas Lynx
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »