CVE-2012-1935

NONECVSS 0.0

0.0

Multiple cross-site scripting (XSS) vulnerabilities in Newscoop 3.5.x before 3.5.5 and 4.x before 4 RC4 allow remote attackers to inject arbitrary web script or HTML via the (1) Back parameter to admin/ad.php, or the (2) token or (3) f_email parameter to admin/password_check_token.php.

🔗 References (20)

cve@mitrehttp://archives.neohapsis.com/archives/bugtraq/2012-04/0130.html
cve@mitrehttp://dev.sourcefabric.org/browse/CS-4179
cve@mitrehttp://dev.sourcefabric.org/browse/CS-4182
cve@mitrehttp://dev.sourcefabric.org/browse/CS-4183
cve@mitrehttp://secunia.com/advisories/48769
cve@mitrehttp://www.exploit-db.com/exploits/18752
cve@mitrehttp://www.securityfocus.com/bid/52941
cve@mitrehttp://www.sourcefabric.org/en/newscoop/latestrelease/1141/Newscoop-355-and-Newscoop-4-RC4-security-releases.htm
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/74781
cve@mitrehttps://www.htbridge.com/advisory/HTB23084
af854a3a-2127-422b-91ae-364da2661108http://archives.neohapsis.com/archives/bugtraq/2012-04/0130.html
af854a3a-2127-422b-91ae-364da2661108http://dev.sourcefabric.org/browse/CS-4179
af854a3a-2127-422b-91ae-364da2661108http://dev.sourcefabric.org/browse/CS-4182
af854a3a-2127-422b-91ae-364da2661108http://dev.sourcefabric.org/browse/CS-4183
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/48769

Is Your Infrastructure Affected by CVE-2012-1935?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2012-1935

📅 Published

🔄 Last Modified

🔗 References (20)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2012-1935?