Vendor

Cynical Games

Products

CVEs

Across products

Status

Private

Products

CVE	Vendor / Product	Risk	CVSS	EPSS	Published	Description
CVE-2006-0940	Cynical Games Shoutlive	0.04	—	0.13	Mar 1, 2006	Multiple direct static code injection vulnerabilities in savesettings.php in ShoutLIVE 1.1.0 allow remote attackers to execute arbitrary PHP code via variables that are written to settings.php.
CVE-2006-1843	Cynical Games Shoutbook	0.00	—	0.00	Apr 19, 2006	Cross-site scripting (XSS) vulnerability in global.php in ShoutBOOK 1.1 allows remote attackers to inject arbitrary web script or HTML via the (1) LOCATION and (2) URL parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2006-1842	Cynical Games Shoutbook	0.00	—	0.01	Apr 19, 2006	Cross-site scripting (XSS) vulnerability in global.php in ShoutBOOK 1.1 allows remote attackers to inject arbitrary web script or HTML via the (1) NAME and (2) COMMENTS parameters.
CVE-2006-0941	Cynical Games Shoutlive	0.00	—	0.01	Mar 1, 2006	Multiple cross-site scripting (XSS) vulnerabilities in post.php in ShoutLIVE 1.1.0 allow remote attackers to inject arbitrary web script or HTML via certain variables when posting new messages.

CVE-2006-0940Mar 1, 2006
Cynical Games
Shoutlive
risk 0.04cvss —epss 0.13
Multiple direct static code injection vulnerabilities in savesettings.php in ShoutLIVE 1.1.0 allow remote attackers to execute arbitrary PHP code via variables that are written to settings.php.
CVE-2006-1843Apr 19, 2006
Cynical Games
Shoutbook
risk 0.00cvss —epss 0.00
Cross-site scripting (XSS) vulnerability in global.php in ShoutBOOK 1.1 allows remote attackers to inject arbitrary web script or HTML via the (1) LOCATION and (2) URL parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2006-1842Apr 19, 2006
Cynical Games
Shoutbook
risk 0.00cvss —epss 0.01
Cross-site scripting (XSS) vulnerability in global.php in ShoutBOOK 1.1 allows remote attackers to inject arbitrary web script or HTML via the (1) NAME and (2) COMMENTS parameters.
CVE-2006-0941Mar 1, 2006
Cynical Games
Shoutlive
risk 0.00cvss —epss 0.01
Multiple cross-site scripting (XSS) vulnerabilities in post.php in ShoutLIVE 1.1.0 allow remote attackers to inject arbitrary web script or HTML via certain variables when posting new messages.