Show filters
5 Total Results
Displaying 1-5 of 5
Sort by:
Attacker Value
Unknown
CVE-2010-2926
Disclosure Date: July 30, 2010 (last updated October 04, 2023)
SQL injection vulnerability in index.php in sNews 1.7 allows remote attackers to execute arbitrary SQL commands via the category parameter.
0
Attacker Value
Unknown
CVE-2006-3916
Disclosure Date: July 28, 2006 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in snews.php in sNews (aka Solucija News) 1.4 allows remote attackers to inject arbitrary web script or HTML via the search_query parameter.
0
Attacker Value
Unknown
CVE-2006-0715
Disclosure Date: February 15, 2006 (last updated February 22, 2025)
Cross-site scripting (XSS) vulnerability in sNews 1.3 allows remote attackers to inject arbitrary web script or HTML via the comment field.
0
Attacker Value
Unknown
CVE-2006-0716
Disclosure Date: February 15, 2006 (last updated February 22, 2025)
SQL injection vulnerability in index.php in sNews 1.3 allows remote attackers to execute arbitrary SQL commands via the (1) category and (2) id parameters.
0
Attacker Value
Unknown
CVE-2005-3853
Disclosure Date: November 27, 2005 (last updated February 22, 2025)
SQL injection vulnerability in snews.php in sNews 1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) id and (2) category parameters to index.php.
0
