Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web links module vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-0879
SQL injection vulnerability in modules.php in the Web_Links module for PHP-Nuke allows remote malicious users to execute arbitrary SQL commands via the cid parameter in a viewlink action.
Phpnuke Web Links Module
1 EDB exploit
7.5
CVSSv2
CVE-2010-5083
SQL injection vulnerability in the Web_Links module for PHP-Nuke 8.0 allows remote malicious users to execute arbitrary SQL commands via the url parameter in an Add action to modules.php.
Phpnuke Php-nuke 8.0
Phpnuke Web Links Module -
1 EDB exploit
3.5
CVSSv2
CVE-2015-5497
Cross-site scripting (XSS) vulnerability in the Web Links module 6.x-2.x prior to 6.x-2.6 and 7.x-1.x prior to 7.x-1.0 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors.
Web Links Project Web Links 6.x-2.0
Web Links Project Web Links 7.x-1.0
Web Links Project Web Links 7.x-1.x
Web Links Project Web Links 6.x-2.5
Web Links Project Web Links 6.x-2.4
Web Links Project Web Links 6.x-2.2
Web Links Project Web Links 6.x-2.3
Web Links Project Web Links 6.x-2.1
7.5
CVSSv2
CVE-2006-6645
PHP remote file inclusion vulnerability in language/lang_english/lang_admin.php in the Web Links (mx_links) 2.05 and previous versions module for mxBB allows remote malicious users to execute arbitrary PHP code via a URL in the mx_root_path parameter.
Mxbb Mxbb Web Links
1 EDB exploit
2.6
CVSSv2
CVE-2015-4388
Cross-site scripting (XSS) vulnerability in the Current Search Links module 7.x-1.x prior to 7.x-1.1 for Drupal, when the "Append the keywords passed by the user to the list" option is disabled, allows remote malicious users to inject arbitrary web script or HTML via a ...
Current Search Links Project Current Search Links 7.x-1.x-dev
Current Search Links Project Current Search Links 7.x-1.0
4.3
CVSSv2
CVE-2021-45034
A vulnerability has been identified in CP-8000 MASTER MODULE WITH I/O -25/+70°C (All versions < V16.20), CP-8000 MASTER MODULE WITH I/O -40/+70°C (All versions < V16.20), CP-8021 MASTER MODULE (All versions < V16.20), CP-8022 MASTER MODULE WITH GPRS (All versions...
Siemens Cp-8000 Master Module With I\\/o -25\\/\\+70 Firmware
Siemens Cp-8000 Master Module With I\\/o -40\\/\\+70 Firmware
Siemens Cp-8021 Master Module Firmware
Siemens Cp-8022 Master Module With Gprs Firmware
3.5
CVSSv2
CVE-2009-2610
Cross-site scripting (XSS) vulnerability in the Links Related module in the Links Package 5.x prior to 5.x-1.13 and 6.x prior to 6.x-1.2, a module for Drupal, allows remote authenticated users to inject arbitrary web script or HTML via the title field.
Scott Courtney Links Package 6.x-1.0-beta1
Scott Courtney Links Package 6.x-1.0-beta2
Scott Courtney Links Package 6.x-1.0-beta3
Scott Courtney Links Package 6.x-1.0-beta5
Scott Courtney Links Package 5.x-1.11
Scott Courtney Links Package 5.x-1.x-dev
Scott Courtney Links Package 5.x-1.9
Scott Courtney Links Package 5.x-1.8
Scott Courtney Links Package 6.x-1.0-beta11
Scott Courtney Links Package 6.x-1.0-beta12
Scott Courtney Links Package 6.x-1.0-beta13
Scott Courtney Links Package 6.x-1.0-beta14
Scott Courtney Links Package 5.x-1.12-beta1
Scott Courtney Links Package 5.x-1.7
Scott Courtney Links Package 5.x-1.5
Scott Courtney Links Package 5.x-1.2
Scott Courtney Links Package 6.x-1.0-beta6
Scott Courtney Links Package 6.x-1.x-dev
Scott Courtney Links Package 6.x-1.0
Scott Courtney Links Package 5.x-1.12
Scott Courtney Links Package 5.x-1.6
Scott Courtney Links Package 5.x-1.4
4.3
CVSSv2
CVE-2009-4525
Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 5.x prior to 5.x-4.9 and 6.x prior to 6.x-1.9, a module for Drupal, allows remote malicious users to inject arbitrary web script or HTML via crafted data in a list of links.
Joao Ventura Print 5.x-4.7
Joao Ventura Print 5.x-4.2
Joao Ventura Print 5.x-4.1
Joao Ventura Print 6.x-1.5
Joao Ventura Print 6.x-1.6
Joao Ventura Print 6.x-1.7
Joao Ventura Print 6.x-1.0
Joao Ventura Print 5.x-4.5
Joao Ventura Print 5.x-4.4
Joao Ventura Print 6.x-1.1
Joao Ventura Print 6.x-1.2
Joao Ventura Print 5.x-4.8
Joao Ventura Print 5.x-4.6
Joao Ventura Print 5.x-4.0
Joao Ventura Print 6.x-1.x
Joao Ventura Print 5.x-4.3
Joao Ventura Print 5.x-4.x
Joao Ventura Print 6.x-1.3
Joao Ventura Print 6.x-1.4
3.5
CVSSv2
CVE-2012-2309
Cross-site scripting (XSS) vulnerability in the Glossify Internal Links Auto SEO module for Drupal 6.x-2.5 and previous versions allows remote authenticated users with certain roles to inject arbitrary web script or HTML via unspecified vectors.
Wearepropeople Glossify Internal Links Auto Seo
3.5
CVSSv2
CVE-2009-3648
Cross-site scripting (XSS) vulnerability in Service Links 6.x-1.0, a module for Drupal, allows remote authenticated users, with 'administer content types' permissions, to inject arbitrary web script or HTML via unspecified vectors when displaying content type names.
Apsivam Service Links 6.x-1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »