Filtered by vendor Virtuasystems Subscriptions
Filtered by product Virtuanews Pro Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2004-0358 1 Virtuasystems 1 Virtuanews Pro 2024-11-20 N/A
Cross-site scripting (XSS) vulnerability in VirtuaNews Admin Panel Pro 1.0.3 allows remote attackers to execute arbitrary script as other users via (1) the mainnews parameter in admin.php, (2) the expand parameter in admin.php, (3) the id parameter in admin.php, (4) the catid parameter in admin.php, or (5) an unnamed parameter during the newslogo_upload action in admin.php.