Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chess vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-3485
Multiple SQL injection vulnerabilities in AstroDog Press Some Chess 1.5-RC2 and previous versions allow remote malicious users to execute arbitrary SQL commands via unspecified vectors, possibly including the gameID parameter in board.php.
Astrodog Press Some Chess 1.5 Rc1
Astrodog Press Some Chess 1.5 Rc2
7.5
CVSSv2
CVE-2006-5044
Unspecified vulnerability in Prince Clan (Princeclan) Chess component (com_pcchess) 0.8 and previous versions for Mambo and Joomla! has unspecified impact and attack vectors.
Mambo Prince Clan Chess Component
Joomla Prince Clan Chess Component
1 EDB exploit
7.5
CVSSv2
CVE-2002-0204
Buffer overflow in GNU Chess (gnuchess) 5.02 and previous versions, if modified or used in a networked capacity contrary to its own design as a single-user application, may allow local or remote malicious users to execute arbitrary code via a long command.
Gnu Chess
6.8
CVSSv2
CVE-2019-15767
In GNU Chess 6.2.5, there is a stack-based buffer overflow in the cmd_load function in frontend/cmd.cc via a crafted chess position in an EPD file.
Gnu Chess 6.2.5
5
CVSSv2
CVE-2006-3272
Cross-site request forgery (CSRF) vulnerability in menu.php in Some Chess 1.5 rc2 allows remote malicious users to conduct actions as another user, such as changing usernames and passwords, via unspecified vectors. NOTE: the provenance of this information is unknown; the details ...
Astrodog Press Some Chess 1.5 Rc2
2.6
CVSSv2
CVE-2006-3273
Cross-site scripting (XSS) vulnerability in menu.php in Some Chess 1.5 rc1 allows remote malicious users to inject arbitrary web script or HTML via the user parameter ("New Name" field).
Astrodog Press Some Chess 1.5 Rc1
6.8
CVSSv2
CVE-2021-30184
GNU Chess 6.2.7 allows malicious users to execute arbitrary code via crafted PGN (Portable Game Notation) data. This is related to a buffer overflow in the use of a .tmp.epd temporary file in the cmd_pgnload and cmd_pgnreplay functions in frontend/cmd.cc.
Gnu Chess 6.2.7
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
5
CVSSv2
CVE-1999-0847
Buffer overflow in free internet chess server (FICS) program, xboard.
Freechess.org Fics Program
7.5
CVSSv2
CVE-2008-0761
SQL injection vulnerability in index.php in the Prince Clan Chess Club (com_pcchess) 0.8 and previous versions component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the user_id parameter in a players action.
Joomla Com Pcchess
1 EDB exploit
7.5
CVSSv2
CVE-2009-0379
SQL injection vulnerability in the Prince Clan Chess Club (com_pcchess) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the game_id parameter in a showgame action to index.php, a different vector than CVE-2008-0761.
Joomla Com Pcchess
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »