Unrated severityNVD Advisory· Published Jun 21, 2007· Updated Jun 16, 2026
CVE-2007-3330
CVE-2007-3330
Description
Cross-site scripting (XSS) vulnerability in STphp EasyNews PRO 4.0 allows remote attackers to inject arbitrary web script or HTML via a news post, which is stored in news/ without sanitization.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.