Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web chat vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2002-0463
home.php in ARSC (Really Simple Chat) 1.0.1 and previous versions allows remote malicious users to determine the full pathname of the web server via an invalid language in the arsc_language parameter, which leaks the pathname in an error message.
Arsc Really Simple Chat Arsc Really Simple Chat 1.0.1
Arsc Really Simple Chat Arsc Really Simple Chat 1.0
4.3
CVSSv2
CVE-2008-2973
Multiple cross-site scripting (XSS) vulnerabilities in chathead.php in MM Chat 1.5 allow remote malicious users to inject arbitrary web script or HTML via the (1) sitename and (2) wmessage parameters.
Mm Chat Mm Chat 1.5
1 EDB exploit
4.3
CVSSv2
CVE-2016-1157
Cross-site scripting (XSS) vulnerability in log_chat.cgi in Script* Log-Chat prior to 2.0 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Log-chat Project Log-chat 1.0
2.6
CVSSv2
CVE-2006-3366
Multiple cross-site scripting (XSS) vulnerabilities in V3 Chat allow remote malicious users to inject arbitrary web script or HTML via crafted HTML tags, as demonstrated by the IMG tag, in the (1) id parameter in (a) mail/index.php and (b) mail/reply.php; (2) login_id parameter i...
V3 Chat V3 Chat Beta
7 EDB exploits
4.3
CVSSv2
CVE-2016-7817
Cross-site scripting vulnerability in Simple keitai chat 2.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Simple Keitai Chat Project Simple Keitai Chat
3.5
CVSSv2
CVE-2014-5276
Multiple cross-site scripting (XSS) vulnerabilities in Pro Chat Rooms Text Chat Rooms 8.2.0 allow remote authenticated users to inject arbitrary web script or HTML via (1) an uploaded profile picture or (2) the edit parameter to profiles/index.php.
Pro Chat Rooms Text Chat Rooms 8.2.0
1 EDB exploit
4.3
CVSSv2
CVE-2007-5982
Multiple cross-site scripting (XSS) vulnerabilities in X7 Chat 2.0.4, 2.0.5, and possibly other versions allow remote malicious users to inject arbitrary web script or HTML via the (1) room parameter to sources/frame.php, the (2) theme_c parameter to help/index.php, or the (3) IN...
X7 Group X7 Chat 2.0.5
X7 Group X7 Chat 2.0.4
2 EDB exploits
3.5
CVSSv2
CVE-2017-15892
Multiple cross-site scripting (XSS) vulnerabilities in Slash Command Creator in Synology Chat prior to 2.0.0-1124 allow remote authenticated users to inject arbitrary web script or HTML via (1) COMMAND, (2) COMMANDS INSTRUCTION, or (3) DESCRIPTION parameter.
Synology Chat
4.3
CVSSv2
CVE-2017-2187
Cross-site scripting vulnerability in WP Live Chat Support prior to version 7.0.07 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
3cx Live Chat
4.3
CVSSv2
CVE-2008-2485
Cross-site scripting (XSS) vulnerability in the URL redirection script (inc/url_redirection.inc.php) in PCPIN Chat prior to 6.11 allows remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Pcpin Pcpin Chat
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »