Addalink - Addalink CVE

Filtered by vendor Addalink Subscribe

Filtered by product Addalink

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2008-4146	1 Addalink	1 Addalink	2023-12-10	5.0 MEDIUM	N/A
Addalink 1.0 beta 4 and earlier allows remote attackers to (1) approve web-site additions via a modified approved field and (2) change the visit-counter value via a modified counter field.
CVE-2008-4145	1 Addalink	1 Addalink	2023-12-10	6.8 MEDIUM	N/A
SQL injection vulnerability in user_read_links.php in Addalink 1.0 beta 4 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the category_id parameter.

Vulnerabilities (CVE)