Lucene search
K

4 matches found

Prion
Prion
added 2009/12/02 7:30 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in CutePHP CuteNews 1.4.6 and UTF-8 CuteNews 8 and 8b, when magicquotesgpc is disabled, allows remote attackers to inject arbitrary web script or HTML via the body of a news article in an addnews action...

2.6CVSS6.1AI score0.01596EPSS
Exploits1References4Affected Software2
NVD
NVD
added 2009/12/02 7:30 p.m.21 views

CVE-2009-4172

Cross-site scripting XSS vulnerability in index.php in CutePHP CuteNews 1.4.6 and UTF-8 CuteNews 8 and 8b, when magicquotesgpc is disabled, allows remote attackers to inject arbitrary web script or HTML via the body of a news article in an addnews action...

2.6CVSS5.7AI score0.01596EPSS
Exploits1References4
Prion
Prion
added 2008/01/04 11:46 a.m.12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in 2z project 0.9.6.1 allow remote attackers to inject arbitrary web script or HTML via the 1 contentshort or 2 contentfull parameter in an addnews action to the default URI; 3 the content parameter in a pm write action to 2z/admin.php; 4 the...

4.3CVSS6.1AI score0.01107EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2008/01/04 11:0 a.m.22 views

CVE-2007-6659

Multiple cross-site scripting XSS vulnerabilities in 2z project 0.9.6.1 allow remote attackers to inject arbitrary web script or HTML via the 1 contentshort or 2 contentfull parameter in an addnews action to the default URI; 3 the content parameter in a pm write action to 2z/admin.php; 4 the...

5.8AI score0.01107EPSS
Exploits1References5
Rows per page
Query Builder