Status: >> Statusnet >> 0.9.6 Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in statusnet through 2010 in error message contents.
CVSS Score
6.1
EPSS Score
0.004
Published
2019-11-20
Unspecified vulnerability in statusnet through 2010 due to the way addslashes are used in SQL string escapes..
CVSS Score
9.8
EPSS Score
0.004
Published
2019-11-20
statusnet before 0.9.9 has XSS
CVSS Score
6.1
EPSS Score
0.003
Published
2019-11-12
StatusNet 0.9.6 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by tpl/index.php and certain other files.
CVSS Score
5.0
EPSS Score
0.003
Published
2011-09-24