Published: 04/12/2005 Updated: 19/10/2018

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 445

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in phpMyChat 0.14.6 allow remote malicious users to inject arbitrary web script or HTML via the medium parameter to (1) start_page.css.php and (2) style.css.php; or the From parameter to users_popupL.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
phpheaven phpmychat 0.14.6

source: wwwsecurityfocuscom/bid/15679/info phpMyChat is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site This ...

source: wwwsecurityfocuscom/bid/15679/info phpMyChat is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site This may ...

source: wwwsecurityfocuscom/bid/15679/info phpMyChat is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site This ma ...

NVD-CWE-Other http://www.securityfocus.com/bid/15679 http://securityreason.com/securityalert/221 http://www.securityfocus.com/archive/1/484575/100/0/threaded http://www.securityfocus.com/archive/1/418397/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/26696/

CVE-2005-3991

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect