Lucene search

News Script PHP Pro Security Vulnerabilities

cve

CVE-2023-3537

A vulnerability classified as problematic has been found in SimplePHPscripts News Script PHP Pro 2.4. This affects an unknown part of the file /preview.php of the component URL Parameter Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The...

6.1CVSS

6AI Score

0.0005EPSS

2023-07-07 02:15 PM

cve

CVE-2020-25472

SimplePHPscripts News Script PHP Pro 2.3 is affected by a Cross Site Request Forgery (CSRF) vulnerability, which allows attackers to add new...

6.5CVSS

6.6AI Score

0.001EPSS

2020-11-24 03:15 PM

cve

CVE-2020-25473

SimplePHPscripts News Script PHP Pro 2.3 does not properly set the HttpOnly Flag from Session...

6.5CVSS

6.5AI Score

0.001EPSS

2020-11-24 03:15 PM

cve

CVE-2020-25475

SimplePHPscripts News Script PHP Pro 2.3 is affected by a SQL Injection via the id parameter in an editNews...

9.8CVSS

9.8AI Score

0.001EPSS

2020-11-24 03:15 PM

cve

CVE-2020-25474

SimplePHPscripts News Script PHP Pro 2.3 is affected by a Cross Site Scripting (XSS) vulnerability via the editor_name...

6.1CVSS

6AI Score

0.001EPSS

2020-11-24 03:15 PM