2 matches found
CVE-2014-9559
CVE-2014-9559 affects SnipSnap versions 0.5.2a, 1.0b1, and 1.0b2. The issue is a cross-site scripting (XSS) vulnerability that arises from improper handling of user input in the SnipSnap search page, specifically via the query parameter to /snipsnap-search. This allows remote attackers to inject ...
SnipSnap 0.5.2a / 1.0b1 / 1.0b2 Cross Site Scripting
CVE-2014-9559 SnipSnap XSS Cross-Site Scripting Security Vulnerabilities Exploit Title: SnipSnap /snipsnap-search? query Parameter XSS Product: SnipSnap Vulnerable Versions: 0.5.2a 1.0b1 1.0b2 Tested Version: 0.5.2a 1.0b1 1.0b2 Advisory Publication: Jan 30, 2015 Latest Update: Jan 30, 2015...