SkalinksCVEs & Vulnerabilities
3 CVEs affecting Skalinks products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
3 CVEs→ All vendors
Most Affected Products
skalinks 2exchange script 1
CVE-2008-7010CRITICALpoc
Skalfa Software SkaLinks Exchange Script 1.5 allows remote attackers to add new administrators and gain privileges via a direct request to admin/register.php.
19 Aug 2009
10.0
CVSS
CVE-2009-0451HIGHpoc
SQL injection vulnerability in Skalfa SkaLinks 1.5 allows remote attackers to execute arbitrary SQL commands via the Admin name field to the default URI under admin/.
10 Feb 2009
7.5
CVSS
CVE-2007-5917MEDIUM
Cross-site request forgery (CSRF) vulnerability in admin/admin_account.php in Skalinks 1.5 and earlier allows remote attackers to add arbitrary privileged accounts as administrators via the admin_name, admin_password, admin_type, and Add_admin parameters.
10 Nov 2007
6.8
CVSS
← PrevPage 1 / 1Next →