How severe is CVE-2007-6486?

The severity of CVE-2007-6486 has not been assessed with CVSS v3.

CVE-2007-6486

Name: lineshout
Author: geek-palace.com

NONE

Multiple cross-site scripting (XSS) vulnerabilities in shout.php (aka the shoutbox) in LineShout 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) username (nickname) or (2

发布于: 12/20/2007更新于: 4/9/2025

描述

Multiple cross-site scripting (XSS) vulnerabilities in shout.php (aka the shoutbox) in LineShout 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) username (nickname) or (2) message parameter. NOTE: some of these details are obtained from third party information.

AI分析AI驱动

受影响产品

geek-palace.comlineshout

1.0

参考资料

http://davidsopas.com/blog/2007/12/17/lineshout-v10-software-html-injection/
http://secunia.com/advisories/28137
Vendor Advisory
http://www.securityfocus.com/bid/26906
https://exchange.xforce.ibmcloud.com/vulnerabilities/39090
http://davidsopas.com/blog/2007/12/17/lineshout-v10-software-html-injection/
http://secunia.com/advisories/28137
Vendor Advisory
http://www.securityfocus.com/bid/26906
https://exchange.xforce.ibmcloud.com/vulnerabilities/39090