Vulnerabilities > Cmsnx > Million Dollar Text Links

DATE CVE VULNERABILITY TITLE RISK
2009-12-04 CVE-2009-4206 SQL Injection vulnerability in Cmsnx Million Dollar Text Links
SQL injection vulnerability in admin.link.modify.php in Million Dollar Text Links 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
network
low complexity
cmsnx CWE-89
7.5
7.5
2009-06-01 CVE-2009-1854 Improper Authentication vulnerability in Cmsnx Million Dollar Text Links 1.0
Million Dollar Text Links 1.0 allows remote attackers to bypass authentication and gain administrative access by setting the userid cookie to 1.
network
low complexity
cmsnx CWE-287
7.5
7.5