Direct static code injection vulnerability in shoutbox.php in ShoutPro 1.5.2 allows remote attackers to inject arbitrary PHP code into shouts.php via the shout parameter.
References
Configurations
History
21 Nov 2024, 00:30
Type | Values Removed | Values Added |
---|---|---|
References | () http://osvdb.org/34999 - | |
References | () http://secunia.com/advisories/24939 - | |
References | () http://securityreason.com/securityalert/2593 - | |
References | () http://www.securityfocus.com/archive/1/466037/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/23542 - Exploit | |
References | () http://www.vupen.com/english/advisories/2007/1432 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/33727 - | |
References | () https://www.exploit-db.com/exploits/3758 - |
Information
Published : 2007-04-19 10:19
Updated : 2024-11-21 00:30
NVD link : CVE-2007-2141
Mitre link : CVE-2007-2141
CVE.ORG link : CVE-2007-2141
JSON object : View
Products Affected
shoutpro
- shoutpro
CWE