Cross-site scripting (XSS) vulnerability in snews.php in sNews (aka Solucija News) 1.4 allows remote attackers to inject arbitrary web script or HTML via the search_query parameter.
Max CVSS
4.3
EPSS Score
0.59%
Published
2006-07-28
Updated
2017-07-20
Cross-site scripting (XSS) vulnerability in sNews 1.3 allows remote attackers to inject arbitrary web script or HTML via the comment field.
Max CVSS
4.3
EPSS Score
0.32%
Published
2006-02-15
Updated
2018-10-19
2 vulnerabilities found