Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web chat vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-51361
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ginger Plugins Sticky Chat Widget: Click to chat, SMS, Email, Messages, Call Button, Live Chat and Live Support Button allows Stored XSS.This issue affects Sticky Chat ...
Gingerplugins Sticky Chat Widget
4.3
CVSSv2
CVE-2016-4851
Cross-site scripting (XSS) vulnerability in Let's PHP! simple chat prior to 2016-08-15 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Let\\'s Php\\! Simple Chat -
4.3
CVSSv2
CVE-2008-6501
Cross-site scripting (XSS) vulnerability in profiles/index.php in Pro Chat Rooms 3.0.2 allows remote malicious users to inject arbitrary web script or HTML via the gud parameter.
Prochatrooms Pro Chat Rooms 3.0.2
1 EDB exploit
7.5
CVSSv2
CVE-2006-6890
Voodoo chat 1.0RC1b stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download passwords via a direct request for data/users.dat.
Voc-project Voodoo Chat 1.0 Rc1b
1 EDB exploit
4.3
CVSSv2
CVE-2011-2180
Cross-site scripting (XSS) vulnerability in dereferer.php in A Really Simple Chat (ARSC) 3.3-rc2 allows remote malicious users to inject arbitrary web script or HTML via the arsc_link parameter.
Reallysimplechat Really Simple Chat 3.3
4.3
CVSSv2
CVE-2007-0814
Multiple cross-site scripting (XSS) vulnerabilities in Adrenalin's ASP Chat allow remote malicious users to inject arbitrary web script or HTML (1) via the psuedo (pseudo) field or (2) during chat.
Adrenalin Labs Adrenalins Asp Chat
6.8
CVSSv2
CVE-2006-3971
Cross-site scripting (XSS) vulnerability in visitor/livesupport/chat.php in Scott Weedon Ajax Chat, possibly 0.1, allows remote malicious users to inject arbitrary web script or HTML via the userid parameter.
Scott Weedon Ajax Chat 0.1
4.3
CVSSv2
CVE-2011-2470
Cross-site scripting (XSS) vulnerability in chat/base/admin/login.php in A Really Simple Chat (ARSC) 3.3-rc2 allows remote malicious users to inject arbitrary web script or HTML via the arsc_message parameter.
Reallysimplechat Really Simple Chat 3.3
4.3
CVSSv2
CVE-2011-5297
Multiple cross-site scripting (XSS) vulnerabilities in TTChat 1.0.4 allow remote malicious users to inject arbitrary web script or HTML via (1) the msg parameter to default.php or (2) the username parameter to chat_form.php.
Ttfreeware Tigertoms Chat Room 1.0.4
NA
CVE-2023-49175
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kreativo Pro KP Fastest Tawk.To Chat allows Stored XSS.This issue affects KP Fastest Tawk.To Chat: from n/a up to and including 1.1.1.
Kreativopro Kp Fastest Tawk.to Chat
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »