VYPR

Chat Anywhere

by Lionmax Software

CVEs (3)

  • CVE-2005-0522May 2, 2005
    risk 0.03cvss epss 0.01

    Chat Anywhere 2.72a stores sensitive information such as passwords in plaintext in the .INI file for a chatroom, which allows local users to gain privileges.

  • CVE-2004-2724Dec 31, 2004
    risk 0.00cvss epss 0.02

    LionMax Software Chat Anywhere 2.72a allows remote attackers to cause a denial of service (server crash and client CPU consumption) via a username beginning with percent (%) followed by a null character.

  • CVE-2004-1802Dec 31, 2004
    risk 0.00cvss epss 0.01

    Chat Anywhere 2.72 and earlier allows remote attackers to hide their IP address by using %00 before the nickname, which causes the IP address to be displayed as $IP$ on the administration web page.