Lucene search
K

158 matches found

NVD
NVD
added 2014/09/19 10:55 a.m.14 views

CVE-2014-5958

The ChatBox - Chat Rooms aka com.droidchatroom.messengerapp application 2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00271EPSS
Exploits0References3
Prion
Prion
added 2014/09/19 10:55 a.m.17 views

Information disclosure

The ChatBox - Chat Rooms aka com.droidchatroom.messengerapp application 2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00271EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/09/19 10:0 a.m.16 views

CVE-2014-5958

The ChatBox - Chat Rooms aka com.droidchatroom.messengerapp application 2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00271EPSS
Exploits0References3
CVE
CVE
added 2014/09/19 10:0 a.m.37 views

CVE-2014-5958

Affected software: The ChatBox - Chat Rooms (com.droidchatroom.messengerapp) for Android, version 2.5. The vulnerability is improper SSL certificate validation where X.509 certificates from SSL servers are not verified, enabling man-in-the-middle attackers to spoof servers and obtain sensitive in...

5.4CVSS6AI score0.00271EPSS
Exploits0References3Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.23 views

E107 Website System 0.7.2 Chatbox Plugin HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16719/info The e107 content management system CMS Chatbox Plugin is prone to an HTML-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2013/04/15 12:0 a.m.12 views

Vanilla Forums Van2Shout Plugin 1.0.51 - Multiple Cross-Site Request Forgery Vulnerabilities

Vanilla Forums Van2Shout Plugin 1.0.51 - Multiple Cross-Site Request Forgery Vulnerabilities Exploit Title: Vanilla Forums where 1337 is the id. Bookmark CSRF: http://site.org/index.php=/vanilla/discussion/bookmark/1337 UnBookmark CSRF http://site.org/index.php=/vanilla/discussion/bookmark/1337?...

0.9AI score
Exploits0
0day.today
0day.today
added 2012/12/13 12:0 a.m.29 views

MyBB ChangUonDyu Extra File Chatbox Persistent XSS Vulnerability

Popular inferno-like chatbox built for MyBB! ChangUonDyu Extra File Chatbox Persistent XSS Location: Chatbox Notice Vendor: http://community.mybb.com/thread-63559.html PoC: function buildnotice global $fcbfile,$smilies; $noticef = filegetcontents$fcbfile'notice'; $handle =...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2008/08/18 12:0 a.m.235 views

Vbulletin Plugin ChatBox Xss Vulnerability

Vbulletin Plugin ChatBox Xss Vulnerability Discovered By AleminKrali [email protected] www.al3m.blogspot.com Greetz : BeyazKurt,Kerem125,Cr@zyKing,Ercu145,Abo Mohammed Net Devil High Risk Vulnerability! Xss Working!note:You login site and xss try. Ex: http://www.localhost/misc.php?do=ccarc&cbt=xss...

Exploits0
seebug.org
seebug.org
added 2008/07/01 12:0 a.m.13 views

pSys v0.7.0 Alpha (chatbox.php) Remote SQL Injection Vulnerability

No description provided by source. '/ -.- ---------------------oOO------OOo-------------------- | pSys v0.7.0 Alpha chatbox.php Remote SQL Injection | | works only with magic quotes = off | | coded by DNX | -------------------------------------------------------- ! Discovered.: DNX ! Vendor.....:...

7.1AI score
Exploits0
NVD
NVD
added 2006/05/25 10:2 a.m.19 views

CVE-2006-2605

Cross-site scripting XSS vulnerability in DSChat 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the chatbox, probably involving the ctext parameter to send.php...

4.3CVSS5.7AI score0.01373EPSS
Exploits0References8
Cvelist
Cvelist
added 2006/05/25 10:0 a.m.18 views

CVE-2006-2605

Cross-site scripting XSS vulnerability in DSChat 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the chatbox, probably involving the ctext parameter to send.php...

5.7AI score0.01373EPSS
Exploits0References8
NVD
NVD
added 2006/02/23 11:2 p.m.15 views

CVE-2006-0857

Cross-site scripting XSS vulnerability in Chatbox Plugin 1.0 in e107 0.7.2 allows remote attackers to inject arbitrary HTML or web script via a Chatbox, as demonstrated using a SCRIPT element...

4.3CVSS5.7AI score0.03273EPSS
Exploits0References3
Prion
Prion
added 2006/02/23 11:2 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in Chatbox Plugin 1.0 in e107 0.7.2 allows remote attackers to inject arbitrary HTML or web script via a Chatbox, as demonstrated using a SCRIPT element...

4.3CVSS6.2AI score0.03273EPSS
Exploits0References3Affected Software2
CVE
CVE
added 2006/02/23 11:0 p.m.47 views

CVE-2006-0857

CVE-2006-0857 is an XSS vulnerability in the Chatbox Plugin 1.0 for e107 0.7.2. The issue allows remote attackers to inject arbitrary HTML or web script via a Chatbox, as demonstrated using a SCRIPT element. Reported impact corresponds to a MEDIUM base score (CVSSv2: 4.3; I: PARTIAL). The connect...

4.3CVSS5.8AI score0.03273EPSS
Exploits0References3Affected Software2
securityvulns
securityvulns
added 2006/02/20 12:0 a.m.40 views

e107 CMS 0.7.2 Chatbox plugin XSS vulnerability

Software: e107 CMS 0.7.2 Software Details: Chatbox Plugin v1.0 Class: Remote Type: XSS ========== Desription =========== XSS vulnerability exists in e107 0.7.2 CMS. user input is not correctly sanitized in Chatbox Plugin v1.0. ========== Exploit ============= just paste sample code to a Chatbox:...

1.1AI score
Exploits0
exploitpack
exploitpack
added 2006/02/18 12:0 a.m.9 views

E107 Website System 0.7.2 Chatbox Plugin - HTML Injection

E107 Website System 0.7.2 Chatbox Plugin - HTML Injection source: https://www.securityfocus.com/bid/16719/info The e107 content management system CMS Chatbox Plugin is prone to an HTML-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied...

7.5AI score
Exploits0
Exploit DB
Exploit DB
added 2006/02/18 12:0 a.m.84 views

E107 Website System 0.7.2 Chatbox Plugin - HTML Injection

source: https://www.securityfocus.com/bid/16719/info The e107 content management system CMS Chatbox Plugin is prone to an HTML-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/04/19 12:0 a.m.40 views

[Full-disclosure] WebcamXP

------------------------------------------------------------ - EXPL-A-2005-005 exploitlabs.com Advisory 034 - ------------------------------------------------------------ - WebcamXP - OVERVIEW ======== webcamXP is one of the most popular webcam software for private and professional use. it offers...

6AI score
Exploits0
Rows per page
Query Builder