Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web chat vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-1668
A vulnerability in the chat feed feature of Cisco SocialMiner could allow an unauthenticated, remote malicious user to perform cross-site scripting (XSS) attacks against a user of the web-based user interface of an affected system. This vulnerability is due to insufficient saniti...
Cisco Socialminer 11.6(1)
Cisco Socialminer 11.6(2)
Cisco Socialminer 12.0(1)
7.5
CVSSv2
CVE-2000-0787
IRC Xchat client versions 1.4.2 and previous versions allows remote malicious users to execute arbitrary commands by encoding shell metacharacters into a URL which XChat uses to launch a web browser.
Xchat Xchat 1.2.1
Xchat Xchat 1.3.10
Xchat Xchat 1.4
Xchat Xchat 1.5.xdev
Xchat Xchat 1.5.6
Xchat Xchat 1.3.13
Xchat Xchat 1.3.9
Xchat Xchat 1.3.12
Xchat Xchat 1.4.1
Xchat Xchat 1.4.2
Xchat Xchat 1.3.11
1 EDB exploit
NA
CVE-2023-51371
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bit Assist Chat Widget: WhatsApp Chat, Facebook Messenger Chat, Telegram Chat Bubble, Line Messenger, Live Chat Support Chat Button, WeChat, SMS, Call Button, Customer ...
Bitapps Bit Assist
NA
CVE-2022-37775
Genesys PureConnect Interaction Web Tools Chat Service (up to at least 26- September- 2019) allows XSS within the Printable Chat History via the participant -> name JSON POST parameter.
Genesys Pureconnect
NA
CVE-2023-51370
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NinjaTeam WP Chat App allows Stored XSS.This issue affects WP Chat App: from n/a up to and including 3.4.4.
NA
CVE-2024-31108
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in iFlyChat Team iFlyChat – WordPress Chat iflychat allows Stored XSS.This issue affects iFlyChat – WordPress Chat: from n/a up to and including 4.7.2.
NA
CVE-2024-31258
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Micro.Company Form to Chat App allows Stored XSS.This issue affects Form to Chat App: from n/a up to and including 1.1.6.
NA
CVE-2024-29789
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Walter Pinem OneClick Chat to Order allows Stored XSS.This issue affects OneClick Chat to Order: from n/a up to and including 1.0.5.
NA
CVE-2023-49168
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WordPlus Better Messages – Live Chat for WordPress, BuddyPress, PeepSo, Ultimate Member, BuddyBoss allows Stored XSS.This issue affects Better Messages – Li...
Wordplus Better Messages
4.3
CVSSv2
CVE-2005-3505
Cross-site scripting (XSS) vulnerability in the Entropy Chat script in cPanel 10.2.0-R82 and 10.6.0-R137 allows remote malicious users to inject arbitrary web script or HTML via a chat message containing Javascript in style attributes in tags such as <b>, which are processe...
Cpanel Cpanel 10.2.0 R82
Cpanel Cpanel 10.6.0 R137
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »