CVSS: 5.9EPSS: 0%CPEs: 2EXPL: 0CVE-2012-6709
https://notcve.org/view.php?id=CVE-2012-6709
23 Feb 2018 — ELinks 0.12 and Twibright Links 2.3 have Missing SSL Certificate Validation. ELinks 0.12 y Twibright Links 2.3 tienen una falta de validación de certificados SSL. • https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=694658 • CWE-295: Improper Certificate Validation •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2012-4545 – elinks: Improper delegation of client credentials during GSS negotiation
https://notcve.org/view.php?id=CVE-2012-4545
03 Jan 2013 — The http_negotiate_create_context function in protocol/http/http_negotiate.c in ELinks 0.12 before 0.12pre6, when using HTTP Negotiate or GSS-Negotiate authentication, delegates user credentials through GSSAPI, which allows remote servers to authenticate as the client via the delegated credentials. La función http_negotiate_create_context en protocol/http/http_negotiate.c en ELinks v0,12 antes de 0.12pre6, cuando se utiliza la autenticación HTTP Negotiate or GSS-Negotiate, delega las credenciales de usuario... • http://bugzilla.elinks.cz/show_bug.cgi?id=1124 • CWE-287: Improper Authentication •