2 results (0.006 seconds)

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0

The put_chars function in html_r.c in Twibright Links 2.14 allows remote attackers to cause a denial of service (buffer over-read) via a crafted HTML file. La función put_chars en el archivo html_r.c en Twibright Links versión 2.14, permite a los atacantes remotos causar una denegación de servicio (lectura excesiva del búfer) por medio de un archivo HTML creado. The put_chars function in html_r.c in Links version 2.14 can cause a denial of service (buffer over-read) via a crafted html file. • http://seclists.org/fulldisclosure/2017/Jul/76 • CWE-125: Out-of-bounds Read •

CVSS: 7.5EPSS: 6%CPEs: 1EXPL: 2

admin/index.php in Maian Links 3.1 and earlier allows remote attackers to bypass authentication and gain administrative access by sending an arbitrary links_cookie cookie. admin/index.php de Maian Links 3.1 y anteriores, permite a atacantes remotos evitar la autenticación y obtener acceso como administrador enviando una cookie links_cookie de su elección. • https://www.exploit-db.com/exploits/6062 http://secunia.com/advisories/31068 http://www.maianscriptworld.co.uk/free-php-scripts/maian-links/development/index.html http://www.maianscriptworld.co.uk/news.html http://www.securityfocus.com/bid/30205 https://exchange.xforce.ibmcloud.com/vulnerabilities/43749 • CWE-287: Improper Authentication •