Vulnerabilities > Shoutpro
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-04-19 | CVE-2007-2141 | Remote PHP Code Execution vulnerability in ShoutPro Shoutbox.PHP Direct static code injection vulnerability in shoutbox.php in ShoutPro 1.5.2 allows remote attackers to inject arbitrary PHP code into shouts.php via the shout parameter. | 7.5 |
2007-02-24 | CVE-2006-7047 | Permissions, Privileges, and Access Controls vulnerability in Shoutpro 1.0 include.php in Shoutpro 1.0 might allow remote attackers to bypass IP ban restrictions via a URL in the path parameter that points to an alternate bannedips.php file. | 5.0 |