Knusperleicht - Shoutbox CVE

Filtered by vendor Knusperleicht Subscribe

Filtered by product Shoutbox

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2006-6721	1 Knusperleicht	1 Shoutbox	2024-02-04	6.8 MEDIUM	N/A
Multiple cross-site scripting (XSS) vulnerabilities in shout.php in Knusperleicht ShoutBox 2.6 allow remote attackers to inject arbitrary web script or HTML via the (1) sbNick or (2) sbKommentar parameter.
CVE-2006-3989	1 Knusperleicht	1 Shoutbox	2024-02-04	5.1 MEDIUM	N/A
PHP remote file inclusion vulnerability in index.php in Knusperleicht Shoutbox 4.4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the sb_include_path parameter.

Vulnerabilities (CVE)