Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:12 a.m.5 views

CVE-2018-20370

SZ NetChat before 7.9 has XSS in the MyName input field of the Options module. Attackers are able to inject commands to compromise the enabled HTTP server web frontend...

5.4CVSS6.2AI score0.00515EPSS
Exploits2References1
CNVD
CNVD
added 2018/12/25 12:0 a.m.3 views

SZ NetChat Options Module Cross-Site Scripting Vulnerability

SZ NetChat is an online chat application.Options module is one of the menu modules. A cross-site scripting vulnerability exists in the MyName input field of the Options module in SZ NetChat versions prior to 7.9, which can be exploited by a remote attacker to inject commands that could affect the...

5.4CVSS6.4AI score0.00515EPSS
Exploits2References1
Prion
Prion
added 2018/12/23 2:29 a.m.16 views

Design/Logic Flaw

SZ NetChat before 7.9 has XSS in the MyName input field of the Options module. Attackers are able to inject commands to compromise the enabled HTTP server web frontend...

3.5CVSS5.3AI score0.00515EPSS
Exploits2References1Affected Software1
NVD
NVD
added 2018/12/23 2:29 a.m.18 views

CVE-2018-20370

SZ NetChat before 7.9 has XSS in the MyName input field of the Options module. Attackers are able to inject commands to compromise the enabled HTTP server web frontend...

5.4CVSS5.4AI score0.00515EPSS
Exploits2References1
CVE
CVE
added 2018/12/23 2:0 a.m.43 views

CVE-2018-20370

SZ NetChat before 7.9 is vulnerable to Cross-Site Scripting in the Options module (MyName input). The root cause is an XSS flaw in the MyName field, allowing a remote attacker to inject inputs that could compromise the enabled HTTP server web frontend. The public references consistently describe ...

5.4CVSS5.3AI score0.00515EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder