Outfront Spooky Login vulnerabilities
3 known vulnerabilities affecting outfront/spooky_login.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2006-6861P3CRITICALCVSS 10.0PoCv2.72006-12-31
CVE-2006-6861 [CRITICAL] CVE-2006-6861: Multiple SQL injection vulnerabilities in Outfront Spooky Login 2.7 allow remote attackers to execut
Multiple SQL injection vulnerabilities in Outfront Spooky Login 2.7 allow remote attackers to execute arbitrary SQL commands via (1) the UserUpdate parameter to login/register.asp or (2) unspecified parameters to includes/a_register.asp.
nvd
CVE-2002-1720P3HIGHCVSS 7.5PoCv2.0v2.1+4 more2002-12-31
CVE-2002-1720 [HIGH] CVE-2002-1720: SQL injection vulnerability in Spooky Login 2.0 through 2.5 allows remote attackers to bypass authen
SQL injection vulnerability in Spooky Login 2.0 through 2.5 allows remote attackers to bypass authentication and gain privileges via the password field.
nvd
CVE-2006-6862P4MEDIUMCVSS 6.8v2.72006-12-31
CVE-2006-6862 [MEDIUM] CVE-2006-6862: Multiple cross-site scripting (XSS) vulnerabilities in Outfront Spooky Login 2.7 allow remote attack
Multiple cross-site scripting (XSS) vulnerabilities in Outfront Spooky Login 2.7 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) login/login.asp or (2) login/register.asp.
nvd