Every CVE whose affected-product data names Boesch-it Simpnews, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2007-5128 — CVSS 5.0 (medium): SimpNews 2.41.03 on Windows, when PHP before 5.0.0 is used, allows remote attackers to obtain sensitive information via an certain…
CVE-2010-2859 — CVSS 5.0 (medium): news.php in SimpNews 2.47.3 and earlier allows remote attackers to obtain sensitive information via an invalid lang parameter, which…
CVE-2007-4874 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in SimpNews 2.41.03 allow remote attackers to inject arbitrary web script or HTML via…
CVE-2010-2858 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in news.php in SimpNews 2.47.03 and earlier allow remote attackers to inject arbitrary…