3 matches found
CuteNews/UTF-8 CuteNews Multiple Vulneablities
The host is running CuteNews/UTF-8 CuteNews and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbcutenewsnutf8cutenewsmultvuln.nasl 4865 2016-12-28 16:16:43Z teissa $ CuteNews/UTF-8 CuteNews Multiple Vulneablities Authors: Antu Sanadi Udated By: Antu Sanadi on 2009-12-10 61...
CVE-2009-4172
Cross-site scripting XSS vulnerability in index.php in CutePHP CuteNews 1.4.6 and UTF-8 CuteNews 8 and 8b, when magicquotesgpc is disabled, allows remote attackers to inject arbitrary web script or HTML via the body of a news article in an addnews action...
CVE-2009-4172
CVE-2009-4172 is an XSS vulnerability in CutePHP CuteNews 1.4.6 and UTF-8 CuteNews 8/8b where, if magic_quotes_gpc is disabled, an attacker can inject arbitrary script/HTML via the body of a news article in an addnews action. The NVD entry reports a low severity (CVSS v2 base score 2.6) with netw...