Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2009-4767

EPSS 0.96% · P77
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-4767

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Plohni Shoutbox 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) input_name and (2) input_text parameters. NOTE: some of these details are obtained from third party information.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Plohni Shoutbox 'index.php'多个跨站脚本攻击漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
shoutbox是一个PHP脚本,用于实现用户的实时留言功能。 Plohni Shoutbox的脚本index.php中存在多个跨站脚本攻击漏洞。远程攻击者可以借助参数input_name 和input_text注入任意的web脚本和HTML。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2009-4767

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2009-4767

登录查看更多情报信息。

Same Patch Batch · n/a · 2010-04-20 · 27 CVEs total

CVE-2010-1164Atlassian JIRA多个跨站脚本攻击漏洞
CVE-2009-4773Ubercart模块order-management功能 跨站请求伪造漏洞
CVE-2009-4772Ubercart模块PayPal Website Payments G56Standards功能未明漏洞
CVE-2009-4771Ubercart 模块授权问题漏洞
CVE-2009-4770httpdx FTP服务器组件默认密码泄露漏洞
CVE-2009-4769httpdx tolog功能多个格式化字符串漏洞
CVE-2009-4768Blizzard魔兽争霸III: 冰封王座 JASS脚本解析器远程未明任意代码执行漏洞
CVE-2010-1488Linux内核fs/proc/base.c proc_oom_score函数资源管理错误漏洞
CVE-2010-1487IBM Lotus Notes SURunAs.exe明文存储口令漏洞
CVE-2010-1319RealNetworks Helix 和 Helix Mobile Server AgentX++ 整数溢出漏洞
CVE-2010-1318RealNetworks Helix 和 Helix Mobile Server AgentX++ 栈缓冲区溢出漏洞
CVE-2010-1317RealNetworks Helix 和 Helix Mobile Server NTLM Authentication 堆缓冲区溢出漏洞
CVE-2010-1165Atlassian JIRA 代码注入漏洞
CVE-2010-0886Oracle Java SE and Java for Business 组件Java Deployment Toolkit未明漏洞
CVE-2010-1162Linux kernel程序'drivers/char/tty_io.c'函数release_one_tty未明安全漏洞
CVE-2010-1158Perl正则表达式引擎整数溢出漏洞
CVE-2010-1150MediaWiki 跨站请求伪造漏洞
CVE-2010-0744Alvaro aMSN 'SSL'授权问题漏洞
CVE-2010-1489Microsoft Internet Explorer XSS过滤器跨站脚本攻击漏洞
CVE-2010-1458TweakFS Zip Utility栈缓冲区溢出

Showing top 20 of 27 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2009-4767

No comments yet

Leave a comment