cbcvebase.

Solucija Snews vulnerabilities

5 known vulnerabilities affecting solucija/snews.

Total CVEs
5
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2010-2926P3HIGHCVSS 7.5PoCv1.72010-07-30
CVE-2010-2926 [HIGH] CWE-89 CVE-2010-2926: SQL injection vulnerability in index.php in sNews 1.7 allows remote attackers to execute arbitrary S SQL injection vulnerability in index.php in sNews 1.7 allows remote attackers to execute arbitrary SQL commands via the category parameter.
nvd
CVE-2005-3853P3HIGHCVSS 7.5PoC≤ 1.3v1.22005-11-27
CVE-2005-3853 [HIGH] CVE-2005-3853: SQL injection vulnerability in snews.php in sNews 1.3 and earlier allows remote attackers to execute SQL injection vulnerability in snews.php in sNews 1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) id and (2) category parameters to index.php.
nvd
CVE-2006-0715P4MEDIUMCVSS 4.3PoCv1.32006-02-15
CVE-2006-0715 [MEDIUM] CVE-2006-0715: Cross-site scripting (XSS) vulnerability in sNews 1.3 allows remote attackers to inject arbitrary we Cross-site scripting (XSS) vulnerability in sNews 1.3 allows remote attackers to inject arbitrary web script or HTML via the comment field.
nvd
CVE-2006-0716P4HIGHCVSS 7.5v1.32006-02-15
CVE-2006-0716 [HIGH] CVE-2006-0716: SQL injection vulnerability in index.php in sNews 1.3 allows remote attackers to execute arbitrary S SQL injection vulnerability in index.php in sNews 1.3 allows remote attackers to execute arbitrary SQL commands via the (1) category and (2) id parameters.
nvd
CVE-2006-3916P4MEDIUMCVSS 4.3v1.42006-07-28
CVE-2006-3916 [MEDIUM] CVE-2006-3916: Cross-site scripting (XSS) vulnerability in snews.php in sNews (aka Solucija News) 1.4 allows remote Cross-site scripting (XSS) vulnerability in snews.php in sNews (aka Solucija News) 1.4 allows remote attackers to inject arbitrary web script or HTML via the search_query parameter.
nvd
Solucija Snews vulnerabilities | cvebase