Sign in Get started

← All vendors

Vendor

Solucija

Sign in to watch

Products

2

CVEs

13

Across products

14

Status

Private

Products

2

Tsolucio/corebos
8 CVEs
Snews
6 CVEs

Recent CVEs

13

CVE	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2010-2926		0.03	—	0.00		Jul 30, 2010	SQL injection vulnerability in index.php in sNews 1.7 allows remote attackers to execute arbitrary SQL commands via the category parameter.
CVE-2006-0715		0.03	—	0.00		Feb 15, 2006	Cross-site scripting (XSS) vulnerability in sNews 1.3 allows remote attackers to inject arbitrary web script or HTML via the comment field.
CVE-2005-3853		0.03	—	0.00		Nov 27, 2005	SQL injection vulnerability in snews.php in sNews 1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) id and (2) category parameters to index.php.
CVE-2023-3073		0.00	—	0.00		Jun 2, 2023	Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/corebos prior to 8 via evvtgendoc.
CVE-2023-3069		0.00	—	0.00		Jun 2, 2023	Unverified Password Change in GitHub repository tsolucio/corebos prior to 8.
CVE-2023-3074		0.00	—	0.00		Jun 2, 2023	Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/corebos prior to 8.
CVE-2023-3070		0.00	—	0.00		Jun 2, 2023	Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/corebos prior to 8.
CVE-2023-3071		0.00	—	0.00		Jun 2, 2023	Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/corebos prior to 8.
CVE-2023-3075		0.00	—	0.00		Jun 2, 2023	Cross-Site Request Forgery (CSRF) in GitHub repository tsolucio/corebos prior to 8.
CVE-2023-1527		0.00	—	0.00		Mar 21, 2023	Cross-site Scripting (XSS) - Generic in GitHub repository tsolucio/corebos prior to 8.0.
CVE-2022-4446		0.00	—	0.01		Dec 13, 2022	PHP Remote File Inclusion in GitHub repository tsolucio/corebos prior to 8.0.
CVE-2006-3916		0.00	—	0.01		Jul 28, 2006	Cross-site scripting (XSS) vulnerability in snews.php in sNews (aka Solucija News) 1.4 allows remote attackers to inject arbitrary web script or HTML via the search_query parameter.
CVE-2006-0716		0.00	—	0.01		Feb 15, 2006	SQL injection vulnerability in index.php in sNews 1.3 allows remote attackers to execute arbitrary SQL commands via the (1) category and (2) id parameters.