RSS   Vulnerabilities for 'Links manager'   RSS

2006-08-23
 
CVE-2006-4328

CWE-Other
 

 
SQL injection vulnerability in admin.php in CloudNine Interactive Links Manager 2006-06-12, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the nick parameter.

 
 
CVE-2006-4327

CWE-Other
 

 
Multiple cross-site scripting (XSS) vulnerabilities in add_url.php in CloudNine Interactive Links Manager 2006-06-12 allow remote attackers to inject arbitrary web script or HTML via the (1) title, (2) description, or (3) keywords parameters.

 


Copyright 2024, cxsecurity.com

 

Back to Top