7 matches found
CVE-2023-6420
Voovi Social Networking Script 1.0 is affected by a cross-site scripting (XSS) vulnerability in signup2.php via the emailadd parameter. The root cause is inadequate input handling for emailadd, allowing a remote attacker to inject JavaScript that could partially take over an authenticated user’s ...
CVE-2023-6420 Cross-site Scripting vulnerability in Voovi Social Networking Script
A vulnerability has been reported in Voovi Social Networking Script version 1.0 that allows a XSS via signup2.php in the emailadd parameter, the exploitation of which could allow a remote attacker to send a specially crafted JavaScript payload and partially take over the browser session of an...
CVE-2023-6416
CVE-2023-6416 — Voovi Social Networking Script (version 1.0) shows a SQL injection in signup2.php via the emailadd parameter. According to multiple sources, exploitation could allow a remote attacker to send a crafted SQL query and retrieve all stored data. The vulnerability affects Voovi 1.0 and...
Voovi SQL Injection Vulnerability
Voovi is an open source social networking script from Sourceforge. Voovi 1.0 version has a SQL injection vulnerability , the vulnerability stems from signup2.php SQL injection vulnerability...
PT-2023-32651 · Unknown · Voovi Social Networking Script
Name of the Vulnerable Software and Affected Versions: Voovi Social Networking Script version 1.0 Description: A vulnerability has been reported that allows a XSS via the "signup2.php" endpoint in the emailadd parameter. The exploitation of this issue could allow a remote attacker to send a...
Voovi Cross-Site Scripting Vulnerability
Voovi is an open source social networking script from Sourceforge. A cross-site scripting vulnerability exists in Voovi version 1.0, which stems from a cross-site scripting vulnerability in signup2.php...
CVE-2017-7410
Multiple SQL injection vulnerabilities in account/signup.php and account/signup2.php in WebsiteBaker 2.10.0 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 username, 2 displayname parameter...