Mark Girling Myshoutpro vulnerabilities
2 known vulnerabilities affecting mark_girling/myshoutpro.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-6738P3HIGHCVSS 7.5PoCv1.22009-04-21
CVE-2008-6738 [HIGH] CWE-287 CVE-2008-6738: MyShoutPro 1.2 allows remote attackers to bypass authentication and gain administrative access by se
MyShoutPro 1.2 allows remote attackers to bypass authentication and gain administrative access by setting the admin_access cookie to 1.
nvd
CVE-2006-7238P4MEDIUMCVSS 4.3≤ 1.22009-04-21
CVE-2006-7238 [MEDIUM] CWE-79 CVE-2006-7238: Cross-site scripting (XSS) vulnerability in MyShoutPro before 1.2 allows remote attackers to inject
Cross-site scripting (XSS) vulnerability in MyShoutPro before 1.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
nvd