2 matches found
CVE-2006-4327
CVE-2006-4327 concerns CloudNine Interactive Links Manager (version 2006-06-12). The vulnerability is a cross-site scripting (XSS) flaw in add_url.php, where the parameters title, description, and keywords are not properly sanitized, allowing remote attackers to inject arbitrary web script or HTM...
CVE-2006-4328
CloudNine Interactive Links Manager 2006-06-12 is affected by an SQL injection in admin.php via the nick parameter when magic_quotes_gpc is off. The vulnerability allows remote attackers to execute arbitrary SQL commands, as documented in multiple sources (eVuln/SECURITYVULNS entries). The issue ...