Vulnerabilities > Cmsnx > Million Dollar Text Links
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-12-04 | CVE-2009-4206 | SQL Injection vulnerability in Cmsnx Million Dollar Text Links SQL injection vulnerability in admin.link.modify.php in Million Dollar Text Links 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2009-06-01 | CVE-2009-1854 | Improper Authentication vulnerability in Cmsnx Million Dollar Text Links 1.0 Million Dollar Text Links 1.0 allows remote attackers to bypass authentication and gain administrative access by setting the userid cookie to 1. | 7.5 |