Statusnet Security Vulnerabilities and Issues — Statusnet CVE List | Vulners.com

Lucene search

K

StatusStatusnet

6 matches found

CVE•added 2019/11/20 5:15 p.m.•40 views

CVE-2010-4659

Cross-site scripting (XSS) vulnerability in statusnet through 2010 in error message contents.

6.1CVSS6.1AI score0.00412EPSS

CVE•added 2019/11/20 4:15 p.m.•37 views

CVE-2010-4660

Unspecified vulnerability in statusnet through 2010 due to the way addslashes are used in SQL string escapes..

9.8CVSS9.5AI score0.00418EPSS

CVE•added 2020/02/07 4:15 p.m.•32 views

CVE-2010-4658

statusnet through 2010 allows attackers to spoof syslog messages via newline injection attacks.

5.3CVSS5.4AI score0.00238EPSS

CVE•added 2019/11/12 2:15 p.m.•32 views

CVE-2011-3370

statusnet before 0.9.9 has XSS

6.1CVSS6AI score0.00307EPSS

CVE•added 2011/09/24 12:55 a.m.•32 views

CVE-2011-3802

StatusNet 0.9.6 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by tpl/index.php and certain other files.

5CVSS6.3AI score0.00283EPSS

CVE•added 2013/10/11 10:55 p.m.•26 views

CVE-2013-4137

Multiple SQL injection vulnerabilities in StatusNet 1.0 before 1.0.2 and 1.1.0 allow remote attackers to execute arbitrary SQL commands via vectors related to user lists and "a particular tag format."

7.5CVSS8.7AI score0.00366EPSS