VYPR

Sleeperchat

by Sleeperchat

CVEs (2)

  • CVE-2006-0415Jan 25, 2006
    risk 0.03cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in index.php in SleeperChat 0.3f and earlier allows remote attackers to inject arbitrary web script or HTML via the pseudo parameter.

  • CVE-2006-0416Jan 25, 2006
    risk 0.00cvss epss 0.01

    SleeperChat 0.3f and earlier allows remote attackers to bypass authentication and create new entries via the txt parameter to (1) chat_no.php and (2) chat_if.php.