Knusperleicht : Security Vulnerabilities, CVEs, CVSS score >= 6

CVE-2006-6721

Multiple cross-site scripting (XSS) vulnerabilities in shout.php in Knusperleicht ShoutBox 2.6 allow remote attackers to inject arbitrary web script or HTML via the (1) sbNick or (2) sbKommentar parameter.
Max CVSS
6.8
EPSS Score
0.66%
Published
2006-12-23
Updated
2008-09-05

CVE-2006-4008

PHP remote file inclusion vulnerability in index.php in Knusperleicht Faq 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the faq_path parameter.
Max CVSS
7.5
EPSS Score
5.62%
Published
2006-08-07
Updated
2018-10-17

CVE-2006-4007

PHP remote file inclusion vulnerability in index.php in Knusperleicht Guestbook 3.5 allows remote attackers to execute arbitrary PHP code via a URL in the GB_PATH parameter.
Max CVSS
7.5
EPSS Score
5.62%
Published
2006-08-07
Updated
2018-10-17

CVE-2006-3986

PHP remote file inclusion vulnerability in index.php in Knusperleicht Newsletter 3.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the NL_PATH parameter.
Max CVSS
7.5
EPSS Score
16.83%
Published
2006-08-05
Updated
2018-10-17

CVE-2006-3982

PHP remote file inclusion vulnerability in quickie.php in Knusperleicht Quickie, probably 0.2, allows remote attackers to execute arbitrary PHP code via a URL in the QUICK_PATH parameter.
Max CVSS
7.5
EPSS Score
5.62%
Published
2006-08-05
Updated
2018-10-17

CVE-2005-1220

Shoutbox SCRIPT 3.0.2 and earlier allows remote attackers to obtain sensitive information via a direct request to db/settings.dat, which displays usernames and password hashes.
Max CVSS
7.5
EPSS Score
1.08%
Published
2005-05-02
Updated
2017-07-11
6 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close