Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pretty link vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2015-9457
The pretty-link plugin prior to 1.6.8 for WordPress has PrliLinksController::list_links SQL injection via the group parameter.
Caseproof Pretty Link
570
VMScore
CVE-2020-11880
An issue exists in KDE KMail prior to 19.12.3. By using the proprietary (non-RFC6068) "mailto?attach=..." parameter, a website (or other source of mailto links) can make KMail attach local files to a composed email message without showing a warning to the user, as demon...
Kde Kmail
2 Articles
516
VMScore
CVE-2020-12618
eM Client prior to 7.2.33412.0 automatically imported S/MIME certificates and thereby silently replaced existing ones. This allowed a man-in-the-middle malicious user to obtain an email-validated S/MIME certificate from a trusted CA and replace the public key of the entity to be ...
Emclient Em Client
2 Articles
435
VMScore
CVE-2011-4595
Pretty-Link WordPress plugin 1.5.2 has XSS
Caseproof Pretty Link 1.5.2
1 EDB exploit
435
VMScore
CVE-2013-1636
Cross-site scripting (XSS) vulnerability in open-flash-chart.swf in Open Flash Chart (aka Open-Flash Chart), as used in the Pretty Link Lite plugin prior to 1.6.3 for WordPress, JNews (com_jnews) component 8.0.1 for Joomla!, and CiviCRM 3.1.0 up to and including 4.2.9 and 4.3.0 u...
Blair Williams Pretty Link Lite 1.6.0
Blair Williams Pretty Link Lite 1.6.1
Blair Williams Pretty Link Lite
Joobi Com Jnews 8.0.1
Civicrm Civicrm 4.3.1
Civicrm Civicrm 3.1.1
Civicrm Civicrm 3.1.2
Civicrm Civicrm 3.2.2
Civicrm Civicrm 3.2.3
Civicrm Civicrm 3.3.6
Civicrm Civicrm 3.4.0
Civicrm Civicrm 4.1.5
Civicrm Civicrm 4.1.6
Civicrm Civicrm 4.2.7
Civicrm Civicrm 4.2.8
Civicrm Civicrm 4.3.3
Civicrm Civicrm 3.1.0
Civicrm Civicrm 3.2.0
Civicrm Civicrm 3.2.1
Civicrm Civicrm 3.3.3
Civicrm Civicrm 3.3.5
Civicrm Civicrm 4.1.3
1 EDB exploit
383
VMScore
CVE-2020-12619
MailMate prior to 1.11 automatically imported S/MIME certificates and thereby silently replaced existing ones. This allowed a man-in-the-middle malicious user to obtain an email-validated S/MIME certificate from a trusted CA and replace the public key of the entity to be imperson...
Freron Mailmate
2 Articles
383
VMScore
CVE-2020-4089
HCL Notes is vulnerable to an information leakage vulnerability through its support for the 'mailto' protocol. This vulnerability could result in files from the user's filesystem or connected network filesystems being leaked to a third party. All versions of HCL No...
Hcltech Notes 9.0
Hcltech Notes 10.0
Hcltech Notes 11.0
2 Articles
383
VMScore
CVE-2020-11879
An issue exists in GNOME Evolution prior to 3.35.91. By using the proprietary (non-RFC6068) "mailto?attach=..." parameter, a website (or other source of mailto links) can make Evolution attach local files or directories to a composed email message without showing a warn...
Gnome Evolution
2 Articles
383
VMScore
CVE-2011-5192
Cross-site scripting (XSS) vulnerability in pretty-bar.php in Pretty Link Lite plugin prior to 1.5.6 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5191.
Blairwilliams Pretty Link Lite Plugin 1.4.55
Blairwilliams Pretty Link Lite Plugin 1.4.53
Blairwilliams Pretty Link Lite Plugin 1.4.52
Blairwilliams Pretty Link Lite Plugin 1.4.51
Blairwilliams Pretty Link Lite Plugin 1.4.36
Blairwilliams Pretty Link Lite Plugin 1.4.35
Blairwilliams Pretty Link Lite Plugin 1.4.34
Blairwilliams Pretty Link Lite Plugin 1.4.33
Blairwilliams Pretty Link Lite Plugin 1.4.32
Blairwilliams Pretty Link Lite Plugin 1.4.19
Blairwilliams Pretty Link Lite Plugin 1.4.18
Blairwilliams Pretty Link Lite Plugin 1.4.17
Blairwilliams Pretty Link Lite Plugin 1.4.16
Blairwilliams Pretty Link Lite Plugin 1.5.0
Blairwilliams Pretty Link Lite Plugin 1.4.56
Blairwilliams Pretty Link Lite Plugin 1.4.50
Blairwilliams Pretty Link Lite Plugin 1.4.48
Blairwilliams Pretty Link Lite Plugin 1.4.39
Blairwilliams Pretty Link Lite Plugin 1.4.38
Blairwilliams Pretty Link Lite Plugin 1.4.30
Blairwilliams Pretty Link Lite Plugin 1.4.28
Blairwilliams Pretty Link Lite Plugin 1.4.23
383
VMScore
CVE-2011-5191
Cross-site scripting (XSS) vulnerability in pretty-bar.php in Pretty Link Lite plugin prior to 1.5.4 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5192.
Blairwilliams Pretty Link Lite Plugin 1.5.1
Blairwilliams Pretty Link Lite Plugin 1.4.56
Blairwilliams Pretty Link Lite Plugin 1.4.55
Blairwilliams Pretty Link Lite Plugin 1.4.53
Blairwilliams Pretty Link Lite Plugin 1.4.41
Blairwilliams Pretty Link Lite Plugin 1.4.38
Blairwilliams Pretty Link Lite Plugin 1.4.36
Blairwilliams Pretty Link Lite Plugin 1.4.35
Blairwilliams Pretty Link Lite Plugin 1.4.34
Blairwilliams Pretty Link Lite Plugin 1.4.21
Blairwilliams Pretty Link Lite Plugin 1.5.0
Blairwilliams Pretty Link Lite Plugin 1.4.52
Blairwilliams Pretty Link Lite Plugin 1.4.50
Blairwilliams Pretty Link Lite Plugin 1.4.42
Blairwilliams Pretty Link Lite Plugin 1.4.39
Blairwilliams Pretty Link Lite Plugin 1.4.32
Blairwilliams Pretty Link Lite Plugin 1.4.30
Blairwilliams Pretty Link Lite Plugin 1.4.25
Blairwilliams Pretty Link Lite Plugin 1.4.23
Blairwilliams Pretty Link Lite Plugin 1.4.16
Blairwilliams Pretty Link Lite Plugin 1.4.14
Blairwilliams Pretty Link Lite Plugin 1.4.20
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »