CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-7029

Malware in sbrugna...

5CVSS6.4AI score0.02495EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2007-2136

Malware in sbrugna...

7.5CVSS6.4AI score0.45843EPSS

Exploits2References9

seebug.org•added 2014/07/01 12:0 a.m.•19 views

ShoutPro <= 1.5.2 (shout.php) Remote Code Injection Exploit

No description provided by source. ?/ File: shoutbox.php Affects: ShoutPro 1.5.2 may affect earlier versions Date: 17th April 2007 Issue Description: =========================================================================== ShoutPro 1.5.2 fails to fully sanitize user input $shout that it writes...

7.1AI score

Exploits0

Prion•added 2007/04/19 10:19 a.m.•11 views

Code injection

Direct static code injection vulnerability in shoutbox.php in ShoutPro 1.5.2 allows remote attackers to inject arbitrary PHP code into shouts.php via the shout parameter...

7.5CVSS7.8AI score0.45843EPSS

Exploits2References8Affected Software1

canvas•added 2007/04/19 10:19 a.m.•31 views

Immunity Canvas: SHOUTPRO_EXEC

Name| shoutproexec ---|--- CVE| CVE-2007-2141 Exploit Pack| CANVAS Description| ShoutPro exec Notes| CVE Name: CVE-2007-2141 VENDOR: Shoutpro.com Notes: Try using nc -e /bin/sh as your command and having a nc -vlp Repeatability: Infinite CVE Url:...

7.5CVSS0.8AI score0.45843EPSS

Exploits2

NVD•added 2007/04/19 10:19 a.m.•17 views

CVE-2007-2141

Direct static code injection vulnerability in shoutbox.php in ShoutPro 1.5.2 allows remote attackers to inject arbitrary PHP code into shouts.php via the shout parameter...

7.5CVSS7.2AI score0.45843EPSS

Exploits2References8

Cvelist•added 2007/04/19 10:0 a.m.•23 views

CVE-2007-2141

Direct static code injection vulnerability in shoutbox.php in ShoutPro 1.5.2 allows remote attackers to inject arbitrary PHP code into shouts.php via the shout parameter...

7.2AI score0.45843EPSS

Exploits2References8

CVE•added 2007/04/19 10:0 a.m.•50 views

CVE-2007-2141

CVE-2007-2141 affects ShoutPro 1.5.2 and is a Direct static code injection vulnerability in shoutbox.php. An attacker can inject arbitrary PHP code into shouts.php via the shout parameter, enabling remote code execution. The underlying root cause is unsanitized input handling in shoutbox.php, lea...

7.5CVSS7.2AI score0.45843EPSS

Exploits2References8Affected Software1

Packet Storm•added 2007/04/19 12:0 a.m.•25 views

shoutpro-pwn.txt

?php echo "\n"; echo " Special Greetings To - Timq,Warpboy,The-Maggot \n"; echo "\n\n\n"; //Writes Files - Under 100 bytes to meet requireme...

7.4AI score

Exploits0

seebug.org•added 2007/04/18 12:0 a.m.•36 views

ShoutPro Shoutbox.PHP任意PHP代码执行漏洞

ShoutPro是一款基于PHP的WEB应用程序。 ShoutPro不正确过滤用户提交的输入，远程攻击者可以利用漏洞以WEB权限执行任意命令。问题是'Shoutbox.PHP'脚本对用户提交的WEB参数缺少过滤，指定远程服务器上的文件作为包含参数，可导致以WEB权限执行任意命令。 ShoutPro 1.5.2 目前没有解决方案提供： http://shoutpro.com/ ?/ File: shoutbox.php Affects: ShoutPro 1.5.2 may affect earlier versions Date: 17th April 2007 Issue&n...

7.1AI score

Exploits0

seebug.org•added 2007/04/18 12:0 a.m.•76 views

ShoutPro <= 1.5.2 (shout.php) Remote Code Injection Exploit

7.1AI score

Exploits0

0day.today•added 2007/04/17 12:0 a.m.•32 views

ShoutPro <= 1.5.2 (shout.php) Remote Code Injection Exploit

Exploit for unknown platform in category web applications =========================================================== ShoutPro ?php echo "...

7.1AI score

Exploits0

exploitpack•added 2007/04/17 12:0 a.m.•16 views

ShoutPro 1.5.2 - shout.php Remote Code Injection

ShoutPro 1.5.2 - shout.php Remote Code Injection ?php echo "\n"; echo " Special Greetings To - Timq,Warpboy,The-Maggot \n"; echo "\n\n\n"; //Writes Files - Under 100 bytes to meet requirements $temppayload = "...

0.2AI score

Exploits0

Exploit DB•added 2007/04/17 12:0 a.m.•117 views

ShoutPro 1.5.2 - 'shout.php' Remote Code Injection

?php echo "\n"; echo " Special Greetings To - Timq,Warpboy,The-Maggot \n"; echo "\n\n\n"; //Writes Files - Under 100 bytes to meet requirements $temppayload = "%3C%3F%24a%3D...

7.4AI score

Exploits0

NVD•added 2007/02/24 12:28 a.m.•10 views

CVE-2006-7047

include.php in Shoutpro 1.0 might allow remote attackers to bypass IP ban restrictions via a URL in the path parameter that points to an alternate bannedips.php file. NOTE: this issue was originally reported as remote file inclusion, but CVE analysis suggests that this cannot be used for code...

5CVSS7.1AI score0.02495EPSS

Exploits0References4

Cvelist•added 2007/02/24 12:0 a.m.•16 views

CVE-2006-7047

7.1AI score0.02495EPSS

Exploits0References4

CVE•added 2007/02/24 12:0 a.m.•35 views

CVE-2006-7047

The CVE-2006-7047 entry concerns include.php in Shoutpro 1.0, where a crafted path parameter could bypass IP ban restrictions by referencing an alternate bannedips.php file. The CVE description notes that this was originally reported as remote file inclusion, but the analysis indicates it cannot ...

5CVSS7.5AI score0.02495EPSS

Exploits0References4Affected Software1

securityvulns•added 2006/06/15 12:0 a.m.•29 views

Shoutpro 1.0 Version - Remote File Include Vulnerability

SaVSaK.CoM | SpC-x - TheBeKiR | Shoutpro 1.0 Version - Remote File Include Vulnerability Risk : High Class: Remote Script : Shoutpro Credits : SpC-x Thanks : TheBeKiR - Ejder - FasTBoY - ERNE - RMx Code : include"config.php"; include"functions.php"; if $path $ips = file"$path/lists/bannedips.php"...

0.8AI score

Exploits0

Packet Storm•added 2006/06/15 12:0 a.m.•22 views

shoutpro10.txt

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by