158 matches found
CVE-2014-5958
The ChatBox - Chat Rooms aka com.droidchatroom.messengerapp application 2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The ChatBox - Chat Rooms aka com.droidchatroom.messengerapp application 2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5958
The ChatBox - Chat Rooms aka com.droidchatroom.messengerapp application 2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5958
Affected software: The ChatBox - Chat Rooms (com.droidchatroom.messengerapp) for Android, version 2.5. The vulnerability is improper SSL certificate validation where X.509 certificates from SSL servers are not verified, enabling man-in-the-middle attackers to spoof servers and obtain sensitive in...
E107 Website System 0.7.2 Chatbox Plugin HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16719/info The e107 content management system CMS Chatbox Plugin is prone to an HTML-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in...
Vanilla Forums Van2Shout Plugin 1.0.51 - Multiple Cross-Site Request Forgery Vulnerabilities
Vanilla Forums Van2Shout Plugin 1.0.51 - Multiple Cross-Site Request Forgery Vulnerabilities Exploit Title: Vanilla Forums where 1337 is the id. Bookmark CSRF: http://site.org/index.php=/vanilla/discussion/bookmark/1337 UnBookmark CSRF http://site.org/index.php=/vanilla/discussion/bookmark/1337?...
MyBB ChangUonDyu Extra File Chatbox Persistent XSS Vulnerability
Popular inferno-like chatbox built for MyBB! ChangUonDyu Extra File Chatbox Persistent XSS Location: Chatbox Notice Vendor: http://community.mybb.com/thread-63559.html PoC: function buildnotice global $fcbfile,$smilies; $noticef = filegetcontents$fcbfile'notice'; $handle =...
Vbulletin Plugin ChatBox Xss Vulnerability
Vbulletin Plugin ChatBox Xss Vulnerability Discovered By AleminKrali [email protected] www.al3m.blogspot.com Greetz : BeyazKurt,Kerem125,Cr@zyKing,Ercu145,Abo Mohammed Net Devil High Risk Vulnerability! Xss Working!note:You login site and xss try. Ex: http://www.localhost/misc.php?do=ccarc&cbt=xss...
pSys v0.7.0 Alpha (chatbox.php) Remote SQL Injection Vulnerability
No description provided by source. '/ -.- ---------------------oOO------OOo-------------------- | pSys v0.7.0 Alpha chatbox.php Remote SQL Injection | | works only with magic quotes = off | | coded by DNX | -------------------------------------------------------- ! Discovered.: DNX ! Vendor.....:...
CVE-2006-2605
Cross-site scripting XSS vulnerability in DSChat 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the chatbox, probably involving the ctext parameter to send.php...
CVE-2006-2605
Cross-site scripting XSS vulnerability in DSChat 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the chatbox, probably involving the ctext parameter to send.php...
CVE-2006-0857
Cross-site scripting XSS vulnerability in Chatbox Plugin 1.0 in e107 0.7.2 allows remote attackers to inject arbitrary HTML or web script via a Chatbox, as demonstrated using a SCRIPT element...
Cross site scripting
Cross-site scripting XSS vulnerability in Chatbox Plugin 1.0 in e107 0.7.2 allows remote attackers to inject arbitrary HTML or web script via a Chatbox, as demonstrated using a SCRIPT element...
CVE-2006-0857
CVE-2006-0857 is an XSS vulnerability in the Chatbox Plugin 1.0 for e107 0.7.2. The issue allows remote attackers to inject arbitrary HTML or web script via a Chatbox, as demonstrated using a SCRIPT element. Reported impact corresponds to a MEDIUM base score (CVSSv2: 4.3; I: PARTIAL). The connect...
e107 CMS 0.7.2 Chatbox plugin XSS vulnerability
Software: e107 CMS 0.7.2 Software Details: Chatbox Plugin v1.0 Class: Remote Type: XSS ========== Desription =========== XSS vulnerability exists in e107 0.7.2 CMS. user input is not correctly sanitized in Chatbox Plugin v1.0. ========== Exploit ============= just paste sample code to a Chatbox:...
E107 Website System 0.7.2 Chatbox Plugin - HTML Injection
E107 Website System 0.7.2 Chatbox Plugin - HTML Injection source: https://www.securityfocus.com/bid/16719/info The e107 content management system CMS Chatbox Plugin is prone to an HTML-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied...
E107 Website System 0.7.2 Chatbox Plugin - HTML Injection
source: https://www.securityfocus.com/bid/16719/info The e107 content management system CMS Chatbox Plugin is prone to an HTML-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content...
[Full-disclosure] WebcamXP
------------------------------------------------------------ - EXPL-A-2005-005 exploitlabs.com Advisory 034 - ------------------------------------------------------------ - WebcamXP - OVERVIEW ======== webcamXP is one of the most popular webcam software for private and professional use. it offers...