admin 安全漏洞

admin is a chatroom software developed by z-9527 as an individual developer. Both the 1.0 and 2.0 versions of admin have security vulnerabilities. These vulnerabilities stem from incorrect operations with the parameter “isAdmin” in the file/server/routes/user.js, which may lead to the dynamic...

admin 路径遍历漏洞

Admin is a chatroom software developed by Z-9527. There is a path traversal vulnerability in Admin, which stems from incorrect handling of the fileType parameter, potentially leading to path traversal...

admin SQL注入漏洞

Admin is a chatroom software developed by Z-9527 as an individual developer. Versions 1.0 and 2.0 of Admin have SQL injection vulnerabilities. These vulnerabilities stem from incorrect operations on the functions checkName/register/login/getUser/getUsers in the file/server/controller/user.js, whi...

CVE-2024-13033

A vulnerability, which was classified as problematic, has been found in code-projects Chat System 1.0. Affected by this issue is some unknown functionality of the file /admin/chatroom.php. The manipulation of the argument id leads to cross site scripting. The attack may be launched remotely. The...

Chat System chatroom.php File Cross-Site Scripting Vulnerability

Chat System is a chat system. The Chat System suffers from a cross-site scripting vulnerability that stems from a lack of adequate validation and filtering of id parameter input in the file /admin/chatroom.php. The vulnerability can be exploited to inject arbitrary web script into a page by...

Chat System chatroom.php File SQL Injection Vulnerability

Chat System is a chat system. Chat System suffers from an SQL injection vulnerability that stems from the file /admin/chatroom.php not adequately validating and filtering the input of the id parameter. An attacker can exploit this vulnerability to obtain sensitive information...

Simple Chat System 代码注入漏洞

Chat System is a chat system. The Chat System suffers from a cross-site scripting vulnerability that stems from a lack of adequate validation and filtering of id parameter input in the file /admin/chatroom.php. The vulnerability can be exploited to inject arbitrary web script into a page by...

PT-2024-17890 · Unknown · Code-Projects Chat System

Name of the Vulnerable Software and Affected Versions: code-projects Chat System version 1.0 Description: A problematic issue has been found in the code-projects Chat System, affecting some unknown functionality of the file /admin/chatroom.php. The manipulation of the id argument leads to cross...

CVE-2024-13020

A vulnerability classified as critical was found in code-projects Chat System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/chatroom.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been...

PT-2024-17879 · Unknown · Code-Projects Chat System

Name of the Vulnerable Software and Affected Versions: code-projects Chat System version 1.0 Description: A critical issue has been found in the code-projects Chat System, affecting an unknown functionality of the file /admin/chatroom.php. The manipulation of the id argument leads to SQL injectio...

Simple Chat System 注入漏洞

Chat System is a chat system. Chat System suffers from an SQL injection vulnerability that stems from the file /admin/chatroom.php not adequately validating and filtering the input of the id parameter. An attacker can exploit this vulnerability to obtain sensitive information...