Multiple cross-site scripting (XSS) vulnerabilities in phpMyChat 0.14.6 allow remote malicious users to inject arbitrary web script or HTML via the medium parameter to (1) start_page.css.php and (2) style.css.php; or the From parameter to users_popupL.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpheaven phpmychat 0.14.6 |