{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-02T23:31:03.882","vulnerabilities":[{"cve":{"id":"CVE-2005-3009","sourceIdentifier":"cve@mitre.org","published":"2005-09-21T20:03:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in CuteNews allows remote attackers to inject arbitrary web script or HTML via the mod parameter to index.php."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cutephp:cutenews:*:*:*:*:*:*:*:*","matchCriteriaId":"8E6226A5-06A3-4590-BA74-1DAE013F789B"},{"vulnerable":true,"criteria":"cpe:2.3:a:cutephp:cutenews:0.88:*:*:*:*:*:*:*","matchCriteriaId":"35BB2223-5238-4E3D-895A-BE6793AE3A9A"},{"vulnerable":true,"criteria":"cpe:2.3:a:cutephp:cutenews:1.3:*:*:*:*:*:*:*","matchCriteriaId":"4254A63A-3202-4D06-90B3-12D10511BC2E"},{"vulnerable":true,"criteria":"cpe:2.3:a:cutephp:cutenews:1.3.1:*:*:*:*:*:*:*","matchCriteriaId":"D9A2D600-BEA7-4936-B210-91629B2EFCDC"},{"vulnerable":true,"criteria":"cpe:2.3:a:cutephp:cutenews:1.3.2:*:*:*:*:*:*:*","matchCriteriaId":"674CC558-E3B7-4120-879A-0408A595C5BC"},{"vulnerable":true,"criteria":"cpe:2.3:a:cutephp:cutenews:1.3.6:*:*:*:*:*:*:*","matchCriteriaId":"EF7BF20D-34F9-453A-A54A-3A0B39EAAD58"}]}]}],"references":[{"url":"http://securitytracker.com/id?1014929","source":"cve@mitre.org"},{"url":"http://www.aria-security.net/advisory/portals/cutenews.txt","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/archive/1/432110/100/0/threaded","source":"cve@mitre.org"},{"url":"http://securitytracker.com/id?1014929","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.aria-security.net/advisory/portals/cutenews.txt","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/archive/1/432110/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}