vendor:
Shoutbox
by:
_6mO_HaCk
7,5
CVSS
HIGH
Remote Code Execution
78
CWE
Product Name: Shoutbox
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2003
expanded.php remote command execution Xploit
Shoutbox is prone to an issue that may result in the execution of attacker-supplied code. The vulnerability exists due to insufficient sanitization of input into the expanded.php script.
Mitigation:
Input validation should be used to prevent the execution of malicious code.