Filtered by vendor Online News Portal Project Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2020-29241 1 Online News Portal Project 1 Online News Portal 2024-11-21 4.8 Medium
Online News Portal using PHP/MySQLi 1.0 is affected by cross-site scripting (XSS) which allows remote attackers to inject an arbitrary web script or HTML via the "Title" parameter.
CVE-2024-45933 1 Online News Portal Project 1 Online News Portal 2024-10-08 6.6 Medium
OnlineNewsSite v1.0 is vulnerable to Cross Site Scripting (XSS) which allows attackers to execute arbitrary code via the Title and summary fields in the /admin/post/edit/ endpoint.