10 matches found
EUVD-2011-2172
Malware in sbrugna...
EUVD-2011-2459
Malware in sbrugna...
EUVD-2011-2173
Malware in sbrugna...
CVE-2011-2181
Multiple SQL injection vulnerabilities in A Really Simple Chat ARSC 3.3-rc2 allow remote attackers to execute arbitrary SQL commands via the 1 arscuser parameter to base/admin/edituser.php, 2 arsclayoutid parameter in base/admin/editlayout.php, or 3 arscroom parameter to base/admin/editroom.php...
CVE-2011-2180
Cross-site scripting XSS vulnerability in dereferer.php in A Really Simple Chat ARSC 3.3-rc2 allows remote attackers to inject arbitrary web script or HTML via the arsclink parameter...
CVE-2011-2470
Cross-site scripting XSS vulnerability in chat/base/admin/login.php in A Really Simple Chat ARSC 3.3-rc2 allows remote attackers to inject arbitrary web script or HTML via the arscmessage parameter...
CVE-2011-2181
Multiple SQL injection vulnerabilities in A Really Simple Chat ARSC 3.3-rc2 allow remote attackers to execute arbitrary SQL commands via the 1 arscuser parameter to base/admin/edituser.php, 2 arsclayoutid parameter in base/admin/editlayout.php, or 3 arscroom parameter to base/admin/editroom.php...
CVE-2011-2180
ARSC (A Really Simple Chat) v3.3-rc2 is affected by CVE-2011-2180: a Cross-site Scripting (XSS) flaw in dereferer.php where the arsc_link parameter can inject arbitrary HTML/JS. The issue is documented across multiple feeds (NVD, Red Hat, CVE listings) with the confirmed vector being input sanita...
CVE-2011-2181
CVE-2011-2181 concerns multiple SQL injection vulnerabilities in A Really Simple Chat (ARSC) 3.3-rc2. The flaws occur through unsanitized input in three admin endpoints: base/admin/edit_user.php (arsc_user), base/admin/edit_layout.php (arsc_layout_id), and base/admin/edit_room.php (arsc_room). Ex...
HTB22999: Multiple SQL Injections in A Really Simple Chat (ARSC)
Vulnerability ID: HTB22999 Reference: http://www.htbridge.ch/advisory/multiplesqlinjectionsinareallysimplechatarsc.html Product: A Really Simple Chat ARSC Vendor: http://www.reallysimplechat.org/ http://www.reallysimplechat.org/ Vulnerable Version: 3.3-rc2 Vendor Notification: 12 May 2011...