Описание
Direct static code injection vulnerability in shoutbox.php in ShoutPro 1.5.2 allows remote attackers to inject arbitrary PHP code into shouts.php via the shout parameter.
Direct static code injection vulnerability in shoutbox.php in ShoutPro 1.5.2 allows remote attackers to inject arbitrary PHP code into shouts.php via the shout parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-2141
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33727
- https://www.exploit-db.com/exploits/3758
- http://osvdb.org/34999
- http://secunia.com/advisories/24939
- http://securityreason.com/securityalert/2593
- http://www.securityfocus.com/archive/1/466037/100/0/threaded
- http://www.securityfocus.com/bid/23542
- http://www.vupen.com/english/advisories/2007/1432
EPSS
Процентиль: 92%
0.08099
Низкий
CVE ID
Связанные уязвимости
nvd
почти 19 лет назад
Direct static code injection vulnerability in shoutbox.php in ShoutPro 1.5.2 allows remote attackers to inject arbitrary PHP code into shouts.php via the shout parameter.
EPSS
Процентиль: 92%
0.08099
Низкий