Description

game_score.php in e107 allows remote attackers to insert high scores via HTTP POST methods utilizing the $player_name, $player_score, and $game_name variables.

Remediation

References

CVE-2005-3594

Related Vulnerabilities

WordPress Plugin eShop Multiple Cross-Site Scripting Vulnerabilities (6.2.8)

OpenSSL Cryptographic Issues Vulnerability (CVE-2015-0204)

WordPress Plugin Seatgeek Affiliate Tickets Cross-Site Scripting (1.0.2)

Oracle JRE CVE-2024-21138 Vulnerability (CVE-2024-21138)

Oracle Application Server CVE-2006-5359 Vulnerability (CVE-2006-5359)

Severity

Medium

Classification

CVE-2005-3594

Tags

Missing Update Known Vulnerabilities