Vulnerabilities (CVE)

Filtered by vendor Script-fun Subscribe
Filtered by product Sf-shoutbox
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-5948 1 Script-fun 1 Sf-shoutbox 2024-02-28 4.3 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in main.php in SF-Shoutbox 1.2.1 through 1.4 allow remote attackers to inject arbitrary web script or HTML via the (1) nick (aka Name) and (2) shout (aka Shout) parameters.