Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

snewscmsrus-xss.txt

๐Ÿ—“๏ธย 17 Mar 2008ย 00:00:00Reported byย medprostuda.ruTypeย 
packetstorm
ย packetstorm๐Ÿ”—ย packetstormsecurity.com๐Ÿ‘ย 14ย Views

New Advisory: Snewscms Rus v2 software. XSS vulnerability in search.php script. Unpatched issue

Show more

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Code
`New Advisory:  
Snewscms Rus v2  
http://www.medprostuda.ru  
  
--------------------Summary----------------  
Software: SnewsCMS Rus v. 2.3  
Sowtware's Web Site: http://www.snewscms.net.ru  
Versions: 2.4  
Critical Level: Moderate  
Type: XSS  
Class: Remote  
Status: Unpatched  
PoC/Exploit: Not Available  
Solution: Not Available  
Discovered by: http://medprostuda.ru  
  
-----------------Description---------------  
1. XSS.  
  
Vulnerable script: search.php  
  
Parameters 'query' is not  
properly sanitized before being used in HTML tags. http://target.com/search.php?query="><h1>XSS</h1>  
  
--------------PoC/Exploit----------------------  
Waiting for developer(s) reply.  
  
--------------Solution---------------------  
No Patch available.  
  
--------------Credit-----------------------  
Discovered by: http://www.medprostuda.ru  
http://www.eserg.ru  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
17 Mar 2008 00:00Current
7.4High risk
Vulners AI Score7.4
snewscms rus v2xss vulnerabilitysearch.phpunpatchedmedprostuda.rueserg.ru
14
.json
Report