VYPR

Skalinks

by Skalinks

CVEs (2)

  • CVE-2009-0451Feb 10, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in Skalfa SkaLinks 1.5 allows remote attackers to execute arbitrary SQL commands via the Admin name field to the default URI under admin/.

  • CVE-2007-5917Nov 10, 2007
    risk 0.00cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in admin/admin_account.php in Skalinks 1.5 and earlier allows remote attackers to add arbitrary privileged accounts as administrators via the admin_name, admin_password, admin_type, and Add_admin parameters.