How severe is CVE-2007-6486?

The severity of CVE-2007-6486 has not been assessed with CVSS v3.

CVE-2007-6486

Name: lineshout
Author: geek-palace.com

NONE

Multiple cross-site scripting (XSS) vulnerabilities in shout.php (aka the shoutbox) in LineShout 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) username (nickname) or (2

Veröffentlicht: 12/20/2007Aktualisiert: 4/9/2025

Beschreibung

Multiple cross-site scripting (XSS) vulnerabilities in shout.php (aka the shoutbox) in LineShout 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) username (nickname) or (2) message parameter. NOTE: some of these details are obtained from third party information.

KI-AnalyseKI-gestützt

Betroffene Produkte

geek-palace.comlineshout

1.0

Referenzen

http://davidsopas.com/blog/2007/12/17/lineshout-v10-software-html-injection/
http://secunia.com/advisories/28137
Vendor Advisory
http://www.securityfocus.com/bid/26906
https://exchange.xforce.ibmcloud.com/vulnerabilities/39090
http://davidsopas.com/blog/2007/12/17/lineshout-v10-software-html-injection/
http://secunia.com/advisories/28137
Vendor Advisory
http://www.securityfocus.com/bid/26906
https://exchange.xforce.ibmcloud.com/vulnerabilities/39090