Vulnerabilities > Snipsnap

DATE	CVE	VULNERABILITY TITLE	RISK
2015-02-03	CVE-2014-9559	Cross-site Scripting vulnerability in Snipsnap 0.5.2A/1.0B1/1.0B2 Cross-site scripting (XSS) vulnerability in SnipSnap 0.5.2a, 1.0b1, and 1.0b2 allows remote attackers to inject arbitrary web script or HTML via the query parameter to /snipsnap-search. network snipsnap CWE-79	4.3
2014-09-15	CVE-2014-5891	Cryptographic Issues vulnerability in Snipsnap Coupon APP 1.1.11 The SnipSnap Coupon App (aka com.snipsnap.snipsnapapp) application 1.1.11 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. snipsnap CWE-310	5.4
2004-12-31	CVE-2004-1470	Unspecified vulnerability in Snipsnap 0.5.2A CRLF injection vulnerability in SnipSnap 0.5.2a, and other versions before 1.0b1, allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server. network low complexity snipsnap	5.0

Vulnerabilities > Snipsnap {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Snipsnap"}]}