Newscoop Security Vulnerabilities and Issues — Newscoop CVE List

Lucene search

SourcefabricNewscoop

3 matches found

CVE•added 2012/08/27 9:55 p.m.•53 views

CVE-2012-1935

Multiple cross-site scripting (XSS) vulnerabilities in Newscoop 3.5.x before 3.5.5 and 4.x before 4 RC4 allow remote attackers to inject arbitrary web script or HTML via the (1) Back parameter to admin/ad.php, or the (2) token or (3) f_email parameter to admin/password_check_token.php.

4.3CVSS5.7AI score0.0675EPSS

CVE•added 2012/08/27 9:55 p.m.•43 views

CVE-2012-4679

Cross-site scripting (XSS) vulnerability in admin/login.php in Newscoop before 3.5.5 allows remote attackers to inject arbitrary web script or HTML via the f_user_name parameter.

4.3CVSS5.9AI score0.07096EPSS

CVE•added 2013/02/22 12:55 a.m.•38 views

CVE-2013-0730

Multiple cross-site scripting (XSS) vulnerabilities in Newscoop 4.x through 4.1.0 allow remote attackers to inject arbitrary web script or HTML via vectors involving the (1) language parameter to application/modules/admin/controllers/LanguagesController.php or (2) user parameter to application/modu...

4.3CVSS5.8AI score0.00296EPSS