📦

shoutbox

Vendor: knusperleicht

Actively Exploited 0 CISA KEV List

PoC / Exploits 2 Code Available

Total RCEs 0 Remote Access

Total CVEs 5 Total Indexed

Avg. EPSS 2.51% Exploit Prob.

Latest CVE CVE-2006-6721 Dec 23

Security Vulnerability Index

Page 1 / 1

6.8 CVSS

CVE-2006-6721

Exploit Found

Multiple cross-site scripting (XSS) vulnerabilities in shout.php in Knusperleicht ShoutBox 2.6 allow remote attackers to inject arbitrary web script or HTML via the (1) sbNick or (2) sbKommentar parameter.

EPSS: 1.68%

Severity: MEDIUM

Dec 23, 2006

5.1 CVSS

CVE-2006-3989

Exploit Found

PHP remote file inclusion vulnerability in index.php in Knusperleicht Shoutbox 4.4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the sb_include_path parameter.

EPSS: 3.35%

Severity: MEDIUM

Aug 05, 2006

Displaying 2 of 5 Total Entries

Total 1 Sections