6 matches found
CVE-2008-1413
Cross-site scripting XSS vulnerability in search.php in SNewsCMS Rus 2.1 through 2.4 allows remote attackers to inject arbitrary web script or HTML via the query parameter...
CVE-2008-1413
The vulnerability CVE-2008-1413 affects SNewsCMS Rus versions 2.1 through 2.4, where the XSS flaw resides in the search.php parameter handling. The root cause is a cross-site scripting flaw that allows remote attackers to inject arbitrary web script or HTML via the query parameter, potentially en...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Snewscms Rus 2.3: crossite scripting...
snewscmsrus-xss.txt
New Advisory: Snewscms Rus v2 http://www.medprostuda.ru --------------------Summary---------------- Software: SnewsCMS Rus v. 2.3 Sowtware's Web Site: http://www.snewscms.net.ru Versions: 2.4 Critical Level: Moderate Type: XSS Class: Remote Status: Unpatched PoC/Exploit: Not Available Solution: N...
Cross site scripting
Cross-site scripting XSS vulnerability in newspage.php in SnewsCMS Rus 2.1 allows remote attackers to inject arbitrary web script or HTML via the pageid parameter...
CVE-2007-5303
CVE-2007-5303 is an XSS vulnerability affecting SnewsCMS Rus 2.1, specifically in news_page.php where the page_id parameter can be leveraged to inject arbitrary web scripts or HTML. The NVD entry documents a failed/open-based impact: confidentiality=NONE, integrity=PARTIAL, availability=NONE, wit...