EUVD-2015-5452

Malware in sbrugna...

SUSE CVE-2003-0279

Multiple SQL injection vulnerabilities in the WebLinks module for PHP-Nuke 5.x through 6.5 allows remote attackers to steal sensitive information via numeric fields, as demonstrated using 1 the viewlink function and cid parameter, or 2 index.php...

CVE-2015-5497

Cross-site scripting XSS vulnerability in the Web Links module 6.x-2.x before 6.x-2.6 and 7.x-1.x before 7.x-1.0 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors...

CVE-2015-5497

Cross-site scripting XSS vulnerability in the Web Links module 6.x-2.x before 6.x-2.6 and 7.x-1.x before 7.x-1.0 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors...

CVE-2015-5497

The CVE-2015-5497 issue affects Drupal’s Web Links module (Drupal 6.x-2.x family and Drupal 7.x-1.x family). The vulnerability is an XSS that occurs due to insufficient sanitization in the Web Links module, allowing remote authenticated users with certain permissions to inject arbitrary web scrip...

Drupal Web Links Module Cross-Site Scripting Vulnerability

Drupal is a free and open source content management system developed in PHP. web Links is one of the web link modules. A cross-site scripting vulnerability exists in the Drupal Navigate module, which allows remote attackers to exploit the vulnerability to inject malicious script or HTML code, whi...

PHP-Nuke 7.6 Web_Links Module Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/13025/info PHP-Nuke is reportedly affected by multiple cross-site scripting vulnerabilities in the WebLinks Module. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacke...

Dragonfly CMS 9.0.6 .1 Web_Links Module Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...

PHP-Nuke 8.0 Remote Blind SQL Injection

PHP-Nuke new; my $average = 0; print "+ Calculating average load time it may take a while ...\n"; for my $i = 0; $i get$hosto; my $time = time; $average += int$time-$bef; return $average/5; sub Nuke::Usage print "+ Usage: perl nuke.pl \n"; print "+ the host must be the complete path to...

PT-2005-3706 · Maxdev · Maxdev Md-Pro

Name of the Vulnerable Software and Affected Versions: MAXdev MD-Pro versions 1.0.72 and earlier Description: The issue affects one or more modules in MAXdev MD-Pro, including the Download, Search, Web links, Blocks, Messages, News, Comments, Settings, Stats, or subjects modules. The impact and...

CVE-2004-1957

Multiple cross-site scripting XSS vulnerabilities in PostNuke 0.726 allows remote attackers to inject arbitrary web script or HTML via the 1 lid and query parameters to the Downloads module, 2 query parameter to the Weblinks module, or 3 hlpfile parameter to openwindow.php...

The_First_Cut_Is_The_Deepest.txt

!/usr/bin/php -q PHPnuke 6.x and 5.x fetch author hash by pokleyzz Web Links module 3rd January 2004 : 9:29 a.m Web Links module bug found by pokleyzz 3rd January 2004 Requirement: PHP 4.x with curl extension; Greet: tynon, sk ,wanvadder, sirflyguy, wxyz , tenukboncit, kerenggakurus , s0cket370 ,...

Re: PHPNuke holes

Another One: /modules.php?op=modload&name=WebLinks&file=index&lop=ratelink&lid=126&ttitle=script Let's party tonite = -- rolphin...