VYPR

Simple Public Chat Room

by Sourcecodester

CVEs (1)

  • CVE-2025-63710Nov 10, 2025
    risk 0.00cvss epss 0.00

    The send_message.php endpoint in SourceCodester Simple Public Chat Room 1.0 is vulnerable to Cross-Site Request Forgery (CSRF). The application does not implement any CSRF-protection mechanisms such as tokens, nonces, or same-site cookie restrictions. An attacker can create a…