CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-1072

Cross-site scripting (XSS) vulnerability in search.php in Sniggabo CMS 2.21 allows remote attackers to inject arbitrary web script or HTML via the q parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 62.7%

CVSS Severity

CVSS v2 Score 4.3

References

http://greyhathackers.wordpress.com/2010/01/07/sniggabo-cms-v2-21-xss-vulnerability/
http://packetstormsecurity.org/1001-exploits/sniggabocms-xss.txt
http://secunia.com/advisories/38029
http://www.exploit-db.com/exploits/11049
https://exchange.xforce.ibmcloud.com/vulnerabilities/55472
http://greyhathackers.wordpress.com/2010/01/07/sniggabo-cms-v2-21-xss-vulnerability/
http://packetstormsecurity.org/1001-exploits/sniggabocms-xss.txt
http://secunia.com/advisories/38029
http://www.exploit-db.com/exploits/11049
https://exchange.xforce.ibmcloud.com/vulnerabilities/55472

Products affected by CVE-2010-1072

Sniggabo » Sniggabo Cms » Version: 2.21

cpe:2.3:a:sniggabo:sniggabo_cms:2.21

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-1072

Products

Pricing

Contact Us