7 matches found
CVE-2023-6420
Voovi Social Networking Script 1.0 is affected by a cross-site scripting (XSS) vulnerability in signup2.php via the emailadd parameter. The root cause is inadequate input handling for emailadd, allowing a remote attacker to inject JavaScript that could partially take over an authenticated user’s ...
CVE-2023-6420 Cross-site Scripting vulnerability in Voovi Social Networking Script
A vulnerability has been reported in Voovi Social Networking Script version 1.0 that allows a XSS via signup2.php in the emailadd parameter, the exploitation of which could allow a remote attacker to send a specially crafted JavaScript payload and partially take over the browser session of an...
CVE-2023-6416
CVE-2023-6416 — Voovi Social Networking Script (version 1.0) shows a SQL injection in signup2.php via the emailadd parameter. According to multiple sources, exploitation could allow a remote attacker to send a crafted SQL query and retrieve all stored data. The vulnerability affects Voovi 1.0 and...
Voovi Cross-Site Scripting Vulnerability
Voovi is an open source social networking script from Sourceforge. A cross-site scripting vulnerability exists in Voovi version 1.0, which stems from a cross-site scripting vulnerability in signup2.php...
PT-2023-32651 · Unknown · Voovi Social Networking Script
Name of the Vulnerable Software and Affected Versions: Voovi Social Networking Script version 1.0 Description: A vulnerability has been reported that allows a XSS via the "signup2.php" endpoint in the emailadd parameter. The exploitation of this issue could allow a remote attacker to send a...
Voovi SQL Injection Vulnerability
Voovi is an open source social networking script from Sourceforge. Voovi 1.0 version has a SQL injection vulnerability , the vulnerability stems from signup2.php SQL injection vulnerability...
CVE-2017-7410
Multiple SQL injection vulnerabilities in account/signup.php and account/signup2.php in WebsiteBaker 2.10.0 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 username, 2 displayname parameter...