30 matches found
EUVD-2024-37080
Malicious code in bioql PyPI...
CVE-2025-31596
Missing Authorization vulnerability in Chatwee Chat by Chatwee chatwee allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Chat by Chatwee: from n/a through = 2.1.3...
CVE-2022-21649
Convos is an open source multi-user chat that runs in a web browser. Characters starting with "https://" in the chat window create an tag. Stored XSS vulnerability using onfocus and autofocus occurs because escaping exists for "" but escaping for double quotes does not exist. Through this...
Innue Business Live Chat 2.5 Insecure Settings
==================================================================================================================================== | Title : innue business live chat v2.5 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 ...
Strategies for Integrating Pay-Per-Minute Chat Software in Customer Service
By Owais Sultan Enhancing customer interaction is paramount for any business. Integrating pay-per-minute chat software can revitalize your customer service, providing… This is a post from HackRead.com Read the original post: Strategies for Integrating Pay-Per-Minute Chat Software in Customer Serv...
CVE-2023-28356
A vulnerability has been identified where a maliciously crafted message containing a specific chain of characters can cause the chat to enter a hot loop on one of the processes, consuming 120% CPU and rendering the service unresponsive...
Wire Information Disclosure Vulnerability (CNVD-2022-80682)
Wire is a chat software from the German company Wire. The software supports Web, WindowsiOS, Android, and OS X platforms, has group functionality, can make voice calls, send photos, and its original greeting method, PING. Wire 3.22.3993 and earlier versions contain an information disclosure...
Rocket.Chat Cross-Site Scripting Vulnerability (CNVD-2022-70579)
Rocket.Chat is an open source team chat software. Chat suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the chat window, which can be exploited by an attacker to manipulate its style, block functionality, and...
Rocket.Chat chat.getThreadsList Information Disclosure Vulnerability
Rocket.Chat is an open source team chat software. Chat 5.0 before the version of the information leakage vulnerability, the vulnerability stems from /api/v1/chat.getThreadsList lack of user input cleanup, an attacker can exploit the vulnerability through the Mongo DB injection will be private...
Wire Cross-Site Scripting Vulnerability (CNVD-2022-65920)
Wire is a chat software from the German company Wire. The software supports Web, WindowsiOS, Android, and OS X platforms, has group functionality, can make voice calls, send photos, and its original greeting method, PING. Wire has a cross-site scripting vulnerability that stems from insufficient...
Wire cross-site scripting vulnerability (CNVD-2022-31755)
Wire is a chat program from the German company Wire. The program supports Web, WindowsiOS, Android, and OS X platforms, has a group feature, allows voice calls, sends photos, and its original way of saying hello, PING. A cross-site scripting vulnerability exists in the Wire webapp, which stems fr...
Wire server denial of service vulnerability
Wire is a chat software from the German company Wire. The software supports Web, WindowsiOS, Android, OS X platforms, has a group function, can voice calls, send photos and its original way of greeting PING. wire server has a denial of service vulnerability, the vulnerability stems from the syste...
Wire webapp has an unspecified vulnerability
Wire is a chat software from a personal developer. The software supports Web, WindowsiOS, Android, and OS X platforms, has a group feature, can make voice calls, send photos, and its original way of saying hello, PING. wire webapp has a security vulnerability, and no details of the vulnerability...
Wire has unspecified vulnerabilities (CNVD-2022-10740)
Wire is a chat software from a personal developer. The software supports Web, WindowsiOS, Android, and OS X platforms, has group functionality, the ability to make voice calls, send photos, and its ingenious way of saying hello, PING. Wire has a security vulnerability that allows users of Wire by...
Wire 跨站脚本漏洞
Wire is a chat software by an individual developer. The program supports Web, WindowsiOS, Android, and OS X platforms, has a group feature, allows voice calls, sends photos, and its original way of saying hello, PING. A cross-site scripting vulnerability exists in wire-webapp, which can be...
Unspecified vulnerability in Wire wire-ios
Wire is a chat software by an individual developer. The program supports Web, WindowsiOS, Android, and OS X platforms, has a group feature, allows voice calls, sends photos, and its original way of saying hello, PING. Wire wire-ios has a security vulnerability that can be exploited by attackers t...
Wire wire-ios data forgery issue vulnerability
Wire is a chat software by an individual developer. The program supports Web, WindowsiOS, Android, and OS X platforms, has a group feature, allows voice calls, sends photos, and its original way of saying hello, PING. A data forgery vulnerability exists in Wire wire-ios 3.8.0 and earlier versions...
wire-server 信息泄露漏洞
Wire is a chat software by an individual developer. The software supports Web, WindowsiOS, Android, and OS X platforms, has a group feature, allows voice calls, sends photos, and its original greeting method, PING. An information disclosure vulnerability exists in wire-server, which stems from th...
Wire Information Disclosure Vulnerability
Wire is a chat software by an individual developer. The software supports Web, WindowsiOS, Android, and OS X platforms, has a group feature, allows voice calls, sends photos, and its original greeting method, PING. An information disclosure vulnerability exists in Wire, which is caused by a...
Business Live Chat Software 1.0 - Cross-Site Request Forgery (Add Admin) Exploit
Exploit for php platform in category web applications Exploit Title: Business Live Chat Software 1.0 - Cross-Site Request Forgery Add Admin Description: Operator Can Change Role User Type to admin Exploit Author: Meisam Monsef Vendor Homepage: https://www.bdtask.com/business-live-chat-software.ph...