CLink Office 2.0 - Cross-Site Scripting

CLink Office 2.0 is vulnerable to cross-site scripting in the index page of the management console and allows remote attackers to inject arbitrary web script or HTML via the lang parameter. id: CVE-2020-6171 info: name: CLink Office 2.0 - Cross-Site Scripting author: pikpikcu severity: medium...

EUVD-2022-34035

Malicious code in bioql PyPI...

EUVD-2025-7950

Malicious code in bioql PyPI...

CVE-2022-29709

CommuniLink Internet Limited CLink Office v2.0 was discovered to contain multiple SQL injection vulnerabilities via the username and password parameters...

CVE-2020-6171

A cross-site scripting XSS vulnerability in the index page of the CLink Office 2.0 management console allows remote attackers to inject arbitrary web script or HTML via the lang parameter...

CVE-2025-30566

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aryan Themes Clink clink allows DOM-Based XSS.This issue affects Clink: from n/a through = 1.2.2...

CVE-2025-30566

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aryan Themes Clink clink allows DOM-Based XSS.This issue affects Clink: from n/a through = 1.2.2...

CVE-2025-30566 WordPress Clink - <= <= 1.2.2 Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aryan Themes Clink allows DOM-Based XSS. This issue affects Clink: from n/a through 1.2.2...

CVE-2025-30566

CVE-2025-30566 concerns Clink (WordPress Link Manager, by Aryan Themes). The connected vulnerability data indicate an Authenticated (Contributor+) cross-site scripting issue in Clink versions up to 1.2.2, with Wordfence listing it as an Unpatched, stored XSS vulnerability in Clink

CVE-2025-30566 WordPress Clink plugin <= 1.2.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aryan Themes Clink clink allows DOM-Based XSS.This issue affects Clink: from n/a through = 1.2.2...

WordPress Clink plugin <= 1.2.2 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Clink versions = 1.2.2...

WordPress plugin Clink 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

CVE-2022-29709

CommuniLink Internet Limited CLink Office v2.0 was discovered to contain multiple SQL injection vulnerabilities via the username and password parameters...

CVE-2022-29709

CommuniLink Internet Limited CLink Office v2.0 was discovered to contain multiple SQL injection vulnerabilities via the username and password parameters...

CVE-2022-29709

CommuniLink Internet Limited CLink Office v2.0 was discovered to contain multiple SQL injection vulnerabilities via the username and password parameters...

CVE-2022-29709

CVE-2022-29709 affects CommuniLink Internet Limited CLink Office v2.0. Multiple SQL injection vulnerabilities exist via the username and password parameters, enabling unauthenticated attackers to potentially disclose data (Confidentiality impact High; others not affected per the entry). The NVD e...

CVE-2022-29709

CommuniLink Internet Limited CLink Office v2.0 was discovered to contain multiple SQL injection vulnerabilities via the username and password parameters...

Communilink CLink Office SQL注入漏洞

Communilink CLink Office is a control panel for unified management of email and anti-spam filters from Communilink, Hong Kong, China. A security vulnerability exists in CommuniLink CLink Office version v2.0. The vulnerability is exploited by attackers to conduct SQL injection attacks via the...

CLink Office 2.0 SQL Injection Vulnerability

Exploit Title: Multiple blind SQL injection vulnerabilities in in CLink Office 2.0 Anti-Spam management console Exploit Author: Erwin Chan, Stephen Tsoi Vendor Homepage: https://www.communilink.net/ Softwar: CLink Office Version: 2.0 Tested on: CLink Office 2.0 Anti-Spam management console...

CLink Office 2.0 SQL Injection

Exploit Title: Multiple blind SQL injection vulnerabilities in in CLink Office 2.0 Anti-Spam management console Date: 30 Mar 2022 Exploit Author: Erwin Chan, Stephen Tsoi Vendor Homepage: https://www.communilink.net/ Softwar: CLink Office Version: 2.0 Tested on: CLink Office 2.0 Anti-Spam...