Chat

CVEs (3)

• CVE-2008-2485May 28, 2008
  Pcpin

  Chat
  risk 0.00cvss —epss 0.01

  Cross-site scripting (XSS) vulnerability in the URL redirection script (inc/url_redirection.inc.php) in PCPIN Chat before 6.11 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

• CVE-2006-1963Apr 21, 2006
  Pcpin

  Chat
  risk 0.00cvss —epss 0.02

  Directory traversal vulnerability in main.php in PCPIN Chat 5.0.4 and earlier allows remote authenticated users to include and execute arbitrary PHP code via a ".." (dot dot) in a language cookie, as demonstrated by uploading then accessing a smiliefile image that actually…

• CVE-2006-1962Apr 21, 2006
  Pcpin

  Chat
  risk 0.00cvss —epss 0.02

  SQL injection vulnerability in PCPIN Chat 5.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the username field (login parameter) to main.php.