EUVD-2019-16859

Malware in sbrugna...

EUVD-2025-10586

Malicious code in bioql PyPI...

CVE-2025-32584

Cross-Site Request Forgery CSRF vulnerability in Chat2 Chat2 chat2 allows Cross Site Request Forgery.This issue affects Chat2: from n/a through = 4.0...

CVE-2025-32584

Cross-Site Request Forgery CSRF vulnerability in Chat2 Chat2 chat2 allows Cross Site Request Forgery.This issue affects Chat2: from n/a through = 4.0...

CVE-2025-32584 WordPress Chat2 plugin <= 4.0 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Chat2 Chat2 chat2 allows Cross Site Request Forgery.This issue affects Chat2: from n/a through = 4.0...

CVE-2025-32584

CVE-2025-32584 is a CSRF-to-stored-XSS vulnerability affecting the WordPress plugin Chat2. The initial entry indicates a Cross-Site Request Forgery issue that can lead to stored cross-site scripting, affecting Chat2 versions from n/a up to 3.6.3. The linked disclosures in connected sources corrob...

CVE-2025-32584 WordPress Chat2 plugin <= 3.6.3 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Chat2 Chat2 allows Cross Site Request Forgery. This issue affects Chat2: from n/a through 3.6.3...

WordPress Chat2 plugin <= 4.0 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by Dhabaleshwar Das in WordPress Plugin Chat2 versions = 4.0...

PT-2025-15797 · Chat2 · Chat2

Name of the Vulnerable Software and Affected Versions: Chat2 versions prior to 3.6.3 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability, which allows unauthorized actions to be performed on behalf of a user. Recommendations: For versions prior to 3.6.3, update to...

WordPress plugin Chat2 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request...

CVE-2019-7316

An issue was discovered in CSS-TRICKS Chat2 through 2015-05-05. The userid parameter in jumpin.php has a SQL injection vulnerability...

Sql injection

An issue was discovered in CSS-TRICKS Chat2 through 2015-05-05. The userid parameter in jumpin.php has a SQL injection vulnerability...

CVE-2019-7316

CVE-2019-7316 concerns CSS-TRICKS Chat2 (up to 2015-05-05). The issue is a SQL injection in the userid parameter of jumpin.php, exposing a vulnerability in input handling. The CVSS indicates high to critical impact: network attack vector, no authentication, and partial to high impact on confident...

CVE-2019-7316

An issue was discovered in CSS-TRICKS Chat2 through 2015-05-05. The userid parameter in jumpin.php has a SQL injection vulnerability...

Chat2 Cross Site Scripting / SQL Injection

Exploit Title: Chat2 Blind SQL Injection Chat2 Cross site scripting Date: 2014 18 March Author: Dr.3v1l Tested on: Windows Category: webapps Google Dork: inurl:"/chatrooms.php" + Exploit SQL: http:///Chat2/jumpin.php URL encoded POST input userid was set to :...

Sql-injection in RalfChat

Advisory: Sql-injection in RalfChat Home Page: http://www.ralfchat.de Уязвимость/Vulnerability: Sql-injection, Cross Site Scripting Уязвимый скрипт/Vulnerable script: chat2.cgi http://chat.shaonline.ru/cgi-bin/chat2.cgi?action=userinfo&infoabout=Fear'...