Cutephp: >> Cutenews >> 2.0.1 Security Vulnerabilities
CuteNews 2.0.1 allows remote authenticated attackers to execute arbitrary PHP code via unspecified vectors.
CVSS Score
8.8
EPSS Score
0.02
Published
2020-03-25
Cross-site scripting vulnerability in CuteNews 2.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVSS Score
6.1
EPSS Score
0.003
Published
2020-03-25
Cross-site scripting (XSS) vulnerability in CuteNews allows remote attackers to inject arbitrary web script or HTML via the mod parameter to index.php.
CVSS Score
4.3
EPSS Score
0.003
Published
2005-09-21