phpMyChat Plus v1.94 RC1 Multiple Remote Vulnerabilities

Exploit for php platform in category web applications Exploit Title: phpMyChat Plus v1.94 RC1 Multiple Remote Vulnerabilities Date: 04/10/2012 Author: L0n3ly-H34rT Contact: email protected My Site: http://se3c.blogspot.com/ Vendor Link: http://sourceforge.net/projects/phpmychat/ Software Link:...

phpMyChat Plus 1.94 RC1 - Multiple Vulnerabilities

phpMyChat Plus 1.94 RC1 - Multiple Vulnerabilities Exploit Title: phpMyChat Plus v1.94 RC1 Multiple Remote Vulnerabilities Date: 04/10/2012 Author: L0n3ly-H34rT Contact: [email protected] My Site: http://se3c.blogspot.com/ Vendor Link: http://sourceforge.net/projects/phpmychat/ Software Lin...

phpMyChat Plus 1.94 RC1 LFI / XSS / RFI / SQL Injection

Exploit Title: phpMyChat Plus v1.94 RC1 Multiple Remote Vulnerabilities Date: 04/10/2012 Author: L0n3ly-H34rT Contact: [email protected] My Site: http://se3c.blogspot.com/ Vendor Link: http://sourceforge.net/projects/phpmychat/ Software Link:...

phpMyChat Plus 1.93 Local File Inclusion

------------------------------------------------------------------------ Software................phpMyChat Plus 1.93 Vulnerability...........Local File Inclusion Threat Level............Critical 4/5 Download................http://sourceforge.net/projects/phpmychat/ Discovery Date..........5/14/20...

phpMyChat Plus 1.93 Multiple Vulnerabilities

Exploit for php platform in category web applications ------------------------------------------------------------------------ Software................phpMyChat Plus 1.93 Vulnerability...........Blind SQL Injection Threat Level............Serious 3/5...

phpmychat plus 1.93 - Multiple Vulnerabilities

phpmychat plus 1.93 - Multiple Vulnerabilities ------------------------------------------------------------------------ Software................phpMyChat Plus 1.93 Vulnerability...........Blind SQL Injection Threat Level............Serious 3/5...

phpMyChat Plus 1.93 Cross Site Scripting

------------------------------------------------------------------------ Software................phpMyChat Plus 1.93 Vulnerability...........Reflected Cross-site Scripting Threat Level............Low 1/5 Download................http://sourceforge.net/projects/phpmychat/ Discovery...

phpMyChat Plus 1.93 SQL Injection

------------------------------------------------------------------------ Software................phpMyChat Plus 1.93 Vulnerability...........Blind SQL Injection Threat Level............Serious 3/5 Download................http://sourceforge.net/projects/phpmychat/ Discovery Date..........4/25/2011...

CVE-2006-7001

Directory traversal vulnerability in avatar.php in PhpMyChat Plus 1.9 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the L parameter, a different issue than CVE-2006-5897. NOTE: the provenance of this information is unknown; the details are obtained solely from...

CVE-2006-7001

Directory traversal vulnerability in avatar.php in PhpMyChat Plus 1.9 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the L parameter, a different issue than CVE-2006-5897. NOTE: the provenance of this information is unknown; the details are obtained solely from...

CVE-2006-7001

CVE-2006-7001 describes a directory traversal in PhpMyChat Plus 1.9 and earlier. The vulnerable component is the avatar.php handler, where an attacker can supply a "L" parameter containing ".." to read arbitrary files on the server. This mirrors the established issue family in PhpMyChat Plus 1.9 ...

CVE-2006-5897

Multiple directory traversal vulnerabilities in PhpMyChat Plus 1.9 and earlier allow remote attackers to read arbitrary files via a .. dot dot in the ChatPath parameter to 1 avatar.php, 2 colorhelppopup.php, 3 colorpopup.php, 4 index.php, 5 index1.php, 6 lib/connectedusers.lib.php, 7...

CVE-2006-5897

Multiple directory traversal vulnerabilities in PhpMyChat Plus 1.9 and earlier allow remote attackers to read arbitrary files via a .. dot dot in the ChatPath parameter to 1 avatar.php, 2 colorhelppopup.php, 3 colorpopup.php, 4 index.php, 5 index1.php, 6 lib/connectedusers.lib.php, 7...

CVE-2006-5897

CVE-2006-5897 affects PhpMyChat Plus 1.9 and earlier, with multiple directory-traversal paths exposed via ChatPath (to avatar.php, colorhelp_popup.php, color_popup.php, index.php, index1.php, lib/connected_users.lib.php, lib/index.lib.php, phpMyChat.php3) and the L parameter to logs.php. The unde...

phpmychatPlus19.txt

a Title : PhpMyChat Plus = 1.9 Multiple Source Code Disclosure Vulnerabilities Author : ajann Dork : phpMyChat plus Vuln; Files avatar.php colorhelppopup.php colorpopup.php index.php index1.php /lib/connectedusers.lib.php /lib/index.lib.php logs.php phpMyChat.php3 /Files Code,1...

PhpMyChat Plus <= 1.9 Multiple Source Code Disclosure Vulnerabilities

a Title : PhpMyChat Plus = 1.9 Multiple Source Code Disclosure Vulnerabilities Author : ajann Dork : phpMyChat plus Vuln; Files avatar.php colorhelppopup.php colorpopup.php index.php index1.php /lib/connectedusers.lib.php /lib/index.lib.php logs.php phpMyChat.php3 /Files Code,1...