NuytsTech Security

CVE-2007-2141

by ·

Direct static code injection vulnerability in shoutbox.php in ShoutPro 1.5.2 allows remote attackers to inject arbitrary PHP code into shouts.php via the shout parameter.

Date published : 2007-04-19

http://www.securityfocus.com/bid/23542

http://www.securityfocus.com/archive/1/466037/100/0/threaded

Tags: