CLink Office 2.0 - Cross-Site Scripting

CLink Office 2.0 is vulnerable to cross-site scripting in the index page of the management console and allows remote attackers to inject arbitrary web script or HTML via the lang parameter. id: CVE-2020-6171 info: name: CLink Office 2.0 - Cross-Site Scripting author: pikpikcu severity: medium...

EUVD-2022-34035

Malicious code in bioql PyPI...

CVE-2022-29709

CommuniLink Internet Limited CLink Office v2.0 was discovered to contain multiple SQL injection vulnerabilities via the username and password parameters...

CVE-2020-6171

A cross-site scripting XSS vulnerability in the index page of the CLink Office 2.0 management console allows remote attackers to inject arbitrary web script or HTML via the lang parameter...

CVE-2022-29709

CommuniLink Internet Limited CLink Office v2.0 was discovered to contain multiple SQL injection vulnerabilities via the username and password parameters...

CVE-2022-29709

CommuniLink Internet Limited CLink Office v2.0 was discovered to contain multiple SQL injection vulnerabilities via the username and password parameters...

CVE-2022-29709

CommuniLink Internet Limited CLink Office v2.0 was discovered to contain multiple SQL injection vulnerabilities via the username and password parameters...

CVE-2022-29709

CVE-2022-29709 affects CommuniLink Internet Limited CLink Office v2.0. Multiple SQL injection vulnerabilities exist via the username and password parameters, enabling unauthenticated attackers to potentially disclose data (Confidentiality impact High; others not affected per the entry). The NVD e...

CVE-2022-29709

CommuniLink Internet Limited CLink Office v2.0 was discovered to contain multiple SQL injection vulnerabilities via the username and password parameters...

Communilink CLink Office SQL注入漏洞

Communilink CLink Office is a control panel for unified management of email and anti-spam filters from Communilink, Hong Kong, China. A security vulnerability exists in CommuniLink CLink Office version v2.0. The vulnerability is exploited by attackers to conduct SQL injection attacks via the...

CLink Office 2.0 SQL Injection Vulnerability

Exploit Title: Multiple blind SQL injection vulnerabilities in in CLink Office 2.0 Anti-Spam management console Exploit Author: Erwin Chan, Stephen Tsoi Vendor Homepage: https://www.communilink.net/ Softwar: CLink Office Version: 2.0 Tested on: CLink Office 2.0 Anti-Spam management console...

CLink Office 2.0 SQL Injection

Exploit Title: Multiple blind SQL injection vulnerabilities in in CLink Office 2.0 Anti-Spam management console Date: 30 Mar 2022 Exploit Author: Erwin Chan, Stephen Tsoi Vendor Homepage: https://www.communilink.net/ Softwar: CLink Office Version: 2.0 Tested on: CLink Office 2.0 Anti-Spam...

CVE-2020-6171

A cross-site scripting XSS vulnerability in the index page of the CLink Office 2.0 management console allows remote attackers to inject arbitrary web script or HTML via the lang parameter...

CVE-2020-6171

A cross-site scripting XSS vulnerability in the index page of the CLink Office 2.0 management console allows remote attackers to inject arbitrary web script or HTML via the lang parameter...

Cross site scripting

A cross-site scripting XSS vulnerability in the index page of the CLink Office 2.0 management console allows remote attackers to inject arbitrary web script or HTML via the lang parameter...

CVE-2020-6171

A cross-site scripting XSS vulnerability in the index page of the CLink Office 2.0 management console allows remote attackers to inject arbitrary web script or HTML via the lang parameter...

CVE-2020-6171

CVE-2020-6171 : CLink Office 2.0 management console index page is vulnerable to Cross‑Site Scripting via the lang parameter. Remote attackers can inject arbitrary script/HTML, with impact including potential data theft or session hijacking as described in connected sources. The CVSS shows MEDIUM ...

EUVD-2020-27323

A cross-site scripting XSS vulnerability in the index page of the CLink Office 2.0 management console allows remote attackers to inject arbitrary web script or HTML via the lang parameter...