Vulnerabilities > Status > Statusnet

DATE CVE VULNERABILITY TITLE RISK
2020-02-07 CVE-2010-4658 Injection vulnerability in Status Statusnet 2010
statusnet through 2010 allows attackers to spoof syslog messages via newline injection attacks.
network
low complexity
status CWE-74
5.3
5.3
2019-11-20 CVE-2010-4659 Cross-site Scripting vulnerability in Status Statusnet
Cross-site scripting (XSS) vulnerability in statusnet through 2010 in error message contents.
network
low complexity
status CWE-79
6.1
6.1
2019-11-20 CVE-2010-4660 Improper Input Validation vulnerability in Status Statusnet
Unspecified vulnerability in statusnet through 2010 due to the way addslashes are used in SQL string escapes..
network
low complexity
status CWE-20
critical
 9.8
9.8
2019-11-12 CVE-2011-3370 Cross-site Scripting vulnerability in Status Statusnet 0.9.6/1.0.0
statusnet before 0.9.9 has XSS
network
low complexity
status CWE-79
6.1
6.1