phpMyChat Plus 1.98 - pmc_username SQL Injection

phpMyChat Plus 1.98 - pmcusername SQL Injection Title: phpMyChat Plus 1.98 - 'pmcusername' SQL Injection Date: 2020-02-13 Exploit Author: J3rryBl4nks Vendor Homepage: http://ciprianmp.com/latest/ Software Link: https://sourceforge.net/projects/phpmychat/files/phpMyChatPlus/ Version MyChat Plus 1....

phpMyChat Plus 1.98 - 'pmc_username' SQL Injection

Title: phpMyChat Plus 1.98 - 'pmcusername' SQL Injection Date: 2020-02-13 Exploit Author: J3rryBl4nks Vendor Homepage: http://ciprianmp.com/latest/ Software Link: https://sourceforge.net/projects/phpmychat/files/phpMyChatPlus/ Version MyChat Plus 1.98 Tested on Windows 10/Kali Rolling The phpMyCh...

phpMyChat-Plus Cross-Site Scripting Vulnerability

phpMyChat-Plus is a chat room system based on PHP and MySQL. A cross-site scripting vulnerability exists in phpMyChat-Plus version 1.98. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit this vulnerability to execute...

phpMyChat-Plus 1.98 - (pmc_username) Reflected Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: phpMyChat-Plus 1.98 - 'pmcusername' Reflected Cross-Site Scripting Exploit Author: Chris Inzinga Vendor Homepage: http://ciprianmp.com/latest/ Download: https://sourceforge.net/projects/phpmychat/ Tested On: Linux & Mac Version:...

phpMyChat-Plus 1.98 Cross Site Scripting

Exploit Title: phpMyChat-Plus 1.98 - 'pmcusername' Reflected Cross-Site Scripting Date: 2019-12-19 Exploit Author: Chris Inzinga Vendor Homepage: http://ciprianmp.com/latest/ Download: https://sourceforge.net/projects/phpmychat/ Tested On: Linux & Mac Version: 1.98 CVE: CVE-2019-19908 Description...

CVE-2019-19908

phpMyChat-Plus 1.98 is vulnerable to reflected XSS via JavaScript injection into the password reset URL. In the URL, the pmcusername parameter to passreset.php is vulnerable...

CVE-2019-19908

phpMyChat-Plus 1.98 is vulnerable to reflected XSS via JavaScript injection into the password reset URL. In the URL, the pmcusername parameter to passreset.php is vulnerable...

Cross site scripting

phpMyChat-Plus 1.98 is vulnerable to reflected XSS via JavaScript injection into the password reset URL. In the URL, the pmcusername parameter to passreset.php is vulnerable...

CVE-2019-19908

CVE-2019-19908 concerns phpMyChat-Plus 1.98, with a reflected XSS in the password reset flow. The vulnerability is triggered via the pmc_username parameter in pass_reset.php, allowing an attacker to inject JavaScript that runs in the victim’s browser. This could potentially lead to session hijack...

CVE-2019-19908

phpMyChat-Plus 1.98 is vulnerable to reflected XSS via JavaScript injection into the password reset URL. In the URL, the pmcusername parameter to passreset.php is vulnerable...

phpMyChat-Plus 1.98 - 'pmc_username' Reflected Cross-Site Scripting

Exploit Title: phpMyChat-Plus 1.98 - 'pmcusername' Reflected Cross-Site Scripting Date: 2019-12-19 Exploit Author: Chris Inzinga Vendor Homepage: http://ciprianmp.com/latest/ Download: https://sourceforge.net/projects/phpmychat/ Tested On: Linux & Mac Version: 1.98 CVE: CVE-2019-19908 Description...

phpMyChat-Plus 1.98 - pmc_username Reflected Cross-Site Scripting

phpMyChat-Plus 1.98 - pmcusername Reflected Cross-Site Scripting Exploit Title: phpMyChat-Plus 1.98 - 'pmcusername' Reflected Cross-Site Scripting Date: 2019-12-19 Exploit Author: Chris Inzinga Vendor Homepage: http://ciprianmp.com/latest/ Download: https://sourceforge.net/projects/phpmychat/...

CVE-2019-19908

phpMyChat-Plus 1.98 is vulnerable to reflected XSS via JavaScript injection into the password reset URL. In the URL, the pmcusername parameter to passreset.php is vulnerable. Recent assessments: cinzinga at March 09, 2020 9:23pm UTC reported: I am the founder of this exploit. Google dorking...

phpMyChat-Plus 1.94-b8 - SQL Injection Vulnerability

phpMyChat-Plus 1.94-b8 - SQL Injecti0n Vulnerability ===================================================== phpMyChat-Plus 1.94-b8 - SQL Injecti0n Vulnerability ===================================================== Exploit Title: phpMyChat-Plus 1.94-b8 SQL Injecti0n Vulnerability SQLMAP ! Date:...

PHPMyChat 0.14/0.15 Languages.Lib.PHP Local File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20962/info phpMyChat is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized user to view files and execute local scripts...

phpmychat plus 1.93 - Multiple Vulnerabilities

No description provided by source. ------------------------------------------------------------------------ Software................phpMyChat Plus 1.93 Vulnerability...........Blind SQL Injection Threat Level............Serious 3/5 Download................http://sourceforge.net/projects/phpmychat...

phpMyChat <= 0.14.5 (SYS enter) Remote Code Execution Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo PHPMyChat = 0.14.5 \SYS enter\ remote cmmnds xctn 0day\r\n; echo by rgod [email protected]\r\n; echo site: http://retrogod.altervista.org\r\n\r\n; echo dork: intext:\2000-2001 The phpHeaven Team\ -sourceforge\r\n\r\n; ...

phpMyChat 0.14.5 chat/users_popupL.php3 Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/26698/info phpMyChat is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the brows...

phpMyChat 0.14.5 - 'setup.php3' Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28399/info phpMyChat is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

PHPHeaven PHPMyChat 0.14.5 Start-Page.CSS.PHP3 Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13627/info phpMyChat is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...