Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog Docs About Contact

shout vulnerabilities and exploits

(subscribe to this query)
6.1
CVSSv3

CVE-2017-16043

Shout is an IRC client. Because the `/topic` command in messages is unescaped, attackers have the ability to inject HTML scripts that will run in the victim's browser. Affects shout >=0.44.0 <=0.49.3.
Shout Project Shout
7.5
CVSSv2

CVE-2002-1000

Buffer overflow in AnalogX SimpleServer:Shout 1.0 allows remote malicious users to cause a denial of service and execute arbitrary code via a long request to TCP port 8001.
Analogx Simpleserver Shout 1.0
7.1
CVSSv3

CVE-2025-31925

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LambertGroup SHOUT allows Reflected XSS. This issue affects SHOUT: from n/a up to and including 3.5.3.
Lambertgroup Shout
8.5
CVSSv3

CVE-2025-31637

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LambertGroup SHOUT allows SQL Injection. This issue affects SHOUT: from n/a up to and including 3.5.3.
Lambertgroup Shout
5.5
CVSSv3

CVE-2024-44204

A logic issue was addressed with improved validation. This issue is fixed in iOS 18.0.1 and iPadOS 18.0.1. A user's saved passwords may be read aloud by VoiceOver.
Apple Ios And IpadosApple IpadosApple Iphone Os
4.3
CVSSv3

CVE-2024-44207

This issue was addressed with improved checks. This issue is fixed in iOS 18.0.1 and iPadOS 18.0.1. Audio messages in Messages may be able to capture a few seconds of audio before the microphone indicator is activated.
Apple Ios And IpadosApple IpadosApple Iphone Os
6.1
CVSSv3

CVE-2012-6667

Cross-site scripting (XSS) vulnerability in vbshout.php in DragonByte Technologies vBShout module for vBulletin allows remote malicious users to inject arbitrary web script or HTML via the shout parameter in a shout action.
Dragonbyte-tech Vbshout
4.3
CVSSv2

CVE-2007-5948

Multiple cross-site scripting (XSS) vulnerabilities in main.php in SF-Shoutbox 1.2.1 up to and including 1.4 allow remote malicious users to inject arbitrary web script or HTML via the (1) nick (aka Name) and (2) shout (aka Shout) parameters.
Script-fun Sf-shoutbox 1.2.1Script-fun Sf-shoutbox 1.4
4.8
CVSSv3

CVE-2020-23702

Cross Site Scripting (XSS) vulnerability in PHP-Fusion 9.03.60 via 'New Shout' in /infusions/shoutbox_panel/shoutbox_admin.php.
Php-fusion Php-fusion 9.03.60
7.5
CVSSv2

CVE-2007-2141

Direct static code injection vulnerability in shoutbox.php in ShoutPro 1.5.2 allows remote malicious users to inject arbitrary PHP code into shouts.php via the shout parameter.
Shoutpro Shoutpro
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-3248thanhtungtntremote code executioncodepen embed blockCVE-2025-6354chris coyierCVE-2025-50025nitin yawalkarcode executionCVE-2025-50038CVE-2023-0386cross-site scriptingCVE-2025-6351
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook