Filtered by vendor Script-fun Subscriptions
Filtered by product Sf-shoutbox Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2007-5948 1 Script-fun 1 Sf-shoutbox 2024-11-21 N/A
Multiple cross-site scripting (XSS) vulnerabilities in main.php in SF-Shoutbox 1.2.1 through 1.4 allow remote attackers to inject arbitrary web script or HTML via the (1) nick (aka Name) and (2) shout (aka Shout) parameters.