CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The component /php-fusion/infusions/shoutboxpanel/shoutboxarchive.php in PHP-Fusion 9.03.60 allows attackers to redirect victim users to malicious websites via a crafted payload entered into the Shoutbox message panel...

4.9CVSS5.3AI score0.00121EPSS

Exploits1References1Affected Software1

Prion•added 2008/02/14 12:0 a.m.•10 views

Cross site scripting

Cross-site scripting XSS vulnerability in sboxDB.php in Simple Machines Forum SMF Shoutbox 1.14 through 1.16b allows remote attackers to inject arbitrary web script or HTML via strings to the shoutbox form that start with "&", contain the desired script, and end with ";"...

4.3CVSS6.2AI score0.00508EPSS

Exploits0References6Affected Software1

Exploit DB•added 2003/05/29 12:0 a.m.•16 views

Webfroot Shoutbox 2.32 - Remote Command Execution

source: https://www.securityfocus.com/bid/7746/info Shoutbox is prone to an issue that may result in the execution of attacker-supplied code. The vulnerability exists due to insufficient sanitization of the 'conf' URI parameter. An attacker can exploit this vulnerability to execute arbitrary...

7.4AI score

Exploits0

NVD•added 2003/04/11 4:0 a.m.•11 views

CVE-2002-1429

Cross-site scripting vulnerability in board.php of endity.com ShoutBOX allows remote attackers to inject arbitrary HTML into the shoutbox page via the site parameter...

5CVSS6.2AI score0.05053EPSS

Exploits1References4

Cvelist•added 2003/03/18 5:0 a.m.•12 views

CVE-2002-1429

Cross-site scripting vulnerability in board.php of endity.com ShoutBOX allows remote attackers to inject arbitrary HTML into the shoutbox page via the site parameter...

6.2AI score0.05053EPSS

Exploits1References4

securityvulns•added 2003/01/28 12:0 a.m.•26 views

[SCSA-003] Multiple Cross Site Scripting & Script Injection Vulnerabilities in Nuked-Klan

.: Multiple Cross Site Scripting & Script Injection Vulnerabilities in Nuked-Klan :. Security Corporation Security Advisory SCSA-003 PROGRAM: Nuked-Klan HOMEPAGE: http://www.nuked-klan.org VULNERABLE VERSIONS: beta 1.2 and prior DESCRIPTION Nuked Klan is a PHP Gateway for "clans". direct quote fr...

0.4AI score

Exploits0

securityvulns•added 2002/07/31 12:0 a.m.•20 views

Code injection Vulnerability in endity.com's shoutBOX

Overview ----------------------- A shoutbox is a fun tool webmasters put on their site that allows them to receive feedback from users quickly. By typing in their name, site URL, & message, users can post comments, suggestions, praises, flames, etc. onto the shoutbox and it will be seen by everyo...

7.3AI score

Exploits0

Exploit DB•added 2002/07/29 12:0 a.m.•26 views

ShoutBox 1.2 - 'Form' HTML Injection

source: https://www.securityfocus.com/bid/5354/info shoutBOX does not sufficiently sanitize HTML tags from input supplied via form fields. Attackers may exploit this lack of input validation to inject arbitrary HTML and script code into pages that are generated by the script. This may result in...

7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by