Known Vulnerabilities for Web Links by Drupal
Listed below are 10 of the newest known vulnerabilities associated with "Web Links" by "Drupal".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-34442 | FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.211, host header mani... | Not Provided | 2026-03-31 | 2026-04-01 |
| CVE-2026-33954 | LinkAce is a self-hosted archive to collect website links. In versions prior to 2.5.3, a private note attached to a non-priva... | Not Provided | 2026-03-27 | 2026-03-27 |
| CVE-2026-33953 | LinkAce is a self-hosted archive to collect website links. Versions prior to 2.5.3 block direct requests to private IP litera... | Not Provided | 2026-03-27 | 2026-03-30 |
| CVE-2026-30162 | Cross Site Scripting (xss) vulnerability in Timo 2.0.3 via crafted links in the title field. | Not Provided | 2026-03-26 | 2026-03-26 |
| CVE-2026-25392 | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in KaizenCoders Update URLs – Quick and Easy way to s... | Not Provided | 2026-02-19 | 2026-04-01 |
| CVE-2025-60104 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jordy Meow Gallery Cust... | Not Provided | 2025-09-26 | 2026-04-01 |
| CVE-2025-53464 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Online Optimisation WP ... | Not Provided | 2025-09-22 | 2026-04-01 |
| CVE-2025-53460 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Syed Balkhi AffiliateWP... | Not Provided | 2025-09-22 | 2026-04-01 |
| CVE-2025-53451 | Cross-Site Request Forgery (CSRF) vulnerability in mihdan Mihdan: No External Links mihdan-no-external-links allows Cross Sit... | Not Provided | 2025-09-22 | 2026-04-01 |
| CVE-2025-53285 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in The Website Flip Add &a... | Not Provided | 2025-06-27 | 2026-04-01 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Drupal | Web Links | 7.x-1.0 | alpha2 | All | All |
| Application | Drupal | Web Links | 7.x-1.0 | alpha1 | All | All |
| Application | Drupal | Web Links | 7.x-1.0 | All | All | All |
| Application | Drupal | Web Links | 7.x | All | All | All |
| Application | Drupal | Web Links | 6.x-2.6 | All | All | All |
| Application | Drupal | Web Links | 6.x-2.5 | All | All | All |
| Application | Drupal | Web Links | 6.x-2.4 | All | All | All |
| Application | Drupal | Web Links | 6.x-2.3 | All | All | All |
| Application | Drupal | Web Links | 6.x-2.2 | All | All | All |
| Application | Drupal | Web Links | 6.x-2.1 | All | All | All |
| Application | Drupal | Web Links | 6.x-2.0 | rc3 | All | All |
| Application | Drupal | Web Links | 6.x-2.0 | All | All | All |
| Application | Drupal | Web Links | 6.x-2.0 | alpha1 | All | All |
| Application | Drupal | Web Links | 6.x-2.0 | alpha2 | All | All |
| Application | Drupal | Web Links | 6.x-2.0 | alpha3 | All | All |
| Application | Drupal | Web Links | 6.x-2.0 | alpha4 | All | All |
| Application | Drupal | Web Links | 6.x-2.0 | beta1 | All | All |
| Application | Drupal | Web Links | 6.x-2.0 | beta2 | All | All |
| Application | Drupal | Web Links | 6.x-2.0 | rc1 | All | All |
| Application | Drupal | Web Links | 6.x-2.0 | rc2 | All | All |