RSS   Vulnerabilities for 'Snipsnap'   RSS

2015-02-03
 
CVE-2014-9559

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in SnipSnap 0.5.2a, 1.0b1, and 1.0b2 allows remote attackers to inject arbitrary web script or HTML via the query parameter to /snipsnap-search.

 
2004-12-31
 
CVE-2004-1470

 

 
CRLF injection vulnerability in SnipSnap 0.5.2a, and other versions before 1.0b1, allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server.

 

 >>> Vendor: Snipsnap 2 Products
Snipsnap
Snipsnap coupon app


Copyright 2024, cxsecurity.com

 

Back to Top