VYPR
Unrated severityNVD Advisory· Published Nov 15, 2007· Updated Jun 16, 2026

CVE-2007-5982

CVE-2007-5982

Description

Multiple cross-site scripting (XSS) vulnerabilities in X7 Chat 2.0.4, 2.0.5, and possibly other versions allow remote attackers to inject arbitrary web script or HTML via the (1) room parameter to sources/frame.php, the (2) theme_c parameter to help/index.php, or the (3) INSTALL_X7CHATVERSION parameter to upgradev1.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • X7 Group/X7 Chat2 versions
    cpe:2.3:a:x7_group:x7_chat:2.0.4:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:x7_group:x7_chat:2.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:x7_group:x7_chat:2.0.5:*:*:*:*:*:*:*
  • X7 Chat/X7 Chatllm-fuzzy
    Range: 2.0.4, 2.0.5, and possibly other versions

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.