Show filters
5 Total Results
Displaying 1-5 of 5
Sort by:
Attacker Value
Unknown

CVE-2009-1624

Disclosure Date: May 12, 2009 (last updated October 04, 2023)
Directory traversal vulnerability in index.php in Dew-NewPHPLinks 2.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the show parameter.
0
0
Attacker Value
Unknown

CVE-2009-1623

Disclosure Date: May 12, 2009 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in index.php in Dew-NewPHPLinks 2.0 allows remote attackers to inject arbitrary web script or HTML via the PID parameter.
0
0
Attacker Value
Unknown

CVE-2006-1825

Disclosure Date: April 18, 2006 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in index.php in phpLinks 2.1.3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the term parameter.
0
0
Attacker Value
Unknown

CVE-2004-1577

Disclosure Date: December 31, 2004 (last updated February 22, 2025)
index.php in PHP Links allows remote attackers to gain sensitive information via an invalid show parameter, which reveals the full path in an error message.
0
0
Attacker Value
Unknown

CVE-2002-2304

Disclosure Date: December 31, 2002 (last updated February 22, 2025)
SQL injection vulnerability in admin/auth/checksession.php in MyPHPLinks 2.1.9 and 2.2.0 allows remote attackers to execute arbitrary SQL commands via the idsession parameter.
0
0