3 matches found
ShoutLIVE 1.1.0 - savesettings.php Remote Code Execution
ShoutLIVE 1.1.0 - savesettings.php Remote Code Execution !/usr/bin/perl ShoutLIVE | +---------------------------------------------+ | Coded by DarkFig | +------------------+ ";exit sub headers print "\n +----------------------------------------------+ | ShoutLIVE "$host", PeerPort = "80", Proto =...
Code injection
Multiple direct static code injection vulnerabilities in savesettings.php in ShoutLIVE 1.1.0 allow remote attackers to execute arbitrary PHP code via variables that are written to settings.php...
CVE-2006-0941
ShoutLIVE 1.1.0 is affected, with multiple XSS in the post.php script when posting new messages due to unsanitized input in certain variables. The underlying issue is improper sanitization of user-supplied data, allowing remote attackers to inject arbitrary web script or HTML. An exploit is liste...