CVSS: 9.1EPSS: 3%CPEs: 1EXPL: 4CVE-2010-2456 – Linker IMG 1.0 - Remote File Inclusion
https://notcve.org/view.php?id=CVE-2010-2456
25 Jun 2010 — Multiple directory traversal vulnerabilities in index.php in Linker IMG 1.0 and earlier allow remote attackers to read and execute arbitrary local files via a URL in the (1) cook_lan cookie parameter ($lan_dir variable) or possibly (2) Sdb_type parameter. NOTE: this was originally reported as remote file inclusion, but this may be inaccurate. Múltiples ulnerabilidades de salto de directorio en index.php en Linker IMG v1.0 y anteriores permite a atacantes remotos leer y ejecutar ficheros locales de su elecci... • https://www.exploit-db.com/exploits/13964 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2007-3054
https://notcve.org/view.php?id=CVE-2007-3054
06 Jun 2007 — Cross-site scripting (XSS) vulnerability in search.php in Codelib Linker 2.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the kword parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en search.php de codelib Linker 2.0.4 y anteriores permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través del pa... • http://osvdb.org/36412 •
CVSS: 6.1EPSS: 3%CPEs: 1EXPL: 2CVE-2007-3055 – Linker 2.0.4 - 'index.php' Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2007-3055
06 Jun 2007 — Cross-site scripting (XSS) vulnerability in index.php in Codelib Linker 2.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the cat parameter. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en index.php de Codelib Linker 2.0.4 y anteriores permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través del parámetro cat. • https://www.exploit-db.com/exploits/30138 •