Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lynx vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2008-4690
lynx 2.8.6dev.15 and previous versions, when advanced mode is enabled and lynx is configured as a URL handler, allows remote malicious users to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in lim...
Lynx Lynx 2.8.6
Lynx Lynx 2.8.5
Lynx Lynx 2.8.4
Lynx Lynx 2.8.3
Lynx Lynx 2.8.2
Lynx Lynx 2.8.1
Lynx Lynx
10
CVSSv2
CVE-1999-0817
Lynx WWW client allows a remote malicious user to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet.
University Of Kansas Lynx
10
CVSSv2
CVE-2000-0353
Pine 4.x allows a remote malicious user to execute arbitrary commands via an index.html file which executes lynx and obtains a uudecoded file from a malicious web server, which is then executed by Pine.
University Of Washington Pine 4.2
University Of Washington Pine 4.0
University Of Washington Pine 3.98
University Of Washington Pine 4.10
10
CVSSv2
CVE-1999-0465
Remote attackers can crash Lynx and Internet Explorer using an IMG tag with a large width parameter.
7.6
CVSSv2
CVE-2000-0209
Buffer overflow in Lynx 2.x allows remote malicious users to crash Lynx and possibly execute commands via a long URL in a malicious web page.
University Of Kansas Lynx 2.7
University Of Kansas Lynx 2.8
University Of Kansas Lynx 2.8.3 Dev22
7.5
CVSSv2
CVE-2006-6207
SQL injection vulnerability in products.asp in Evolve shopping cart (aka Evolve Merchant) allows remote malicious users to execute arbitrary SQL commands via the partno parameter. NOTE: the vendor disputes this issue, stating that it is a forced SQL error
Lynx Internet Solutions Evolve Merchant
1 EDB exploit
7.5
CVSSv2
CVE-2006-5953
SQL injection vulnerability in viewcart.asp in Evolve shopping cart (aka Evolve Merchant) allows remote malicious users to execute arbitrary SQL commands via the zoneid parameter.
Lynx Internet Solutions Evolve Merchant
7.5
CVSSv2
CVE-2005-2929
Lynx 2.8.5, and other versions prior to 2.8.6dev.15, allows remote malicious users to execute arbitrary commands via (1) lynxcgi:, (2) lynxexec, and (3) lynxprog links, which are not properly restricted in the default configuration in some environments.
University Of Kansas Lynx 2.8.6
University Of Kansas Lynx 2.8.6 Dev13
University Of Kansas Lynx 2.8.5
7.5
CVSSv2
CVE-2005-3120
Stack-based buffer overflow in the HTrjis function in Lynx 2.8.6 and previous versions allows remote NNTP servers to execute arbitrary code via certain article headers containing Asian characters that cause Lynx to add extra escape (ESC) characters.
Invisible-island Lynx
Debian Debian Linux 3.1
Debian Debian Linux 3.0
1 EDB exploit
6.8
CVSSv2
CVE-2010-2810
Heap-based buffer overflow in the convert_to_idna function in WWW/Library/Implementation/HTParse.c in Lynx 2.8.8dev.1 up to and including 2.8.8dev.4 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed U...
Lynx Lynx 2.8.8
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »