Lucene search
+L

57 matches found

CVE
CVE
added 2024/05/16 9:31 a.m.66 views

CVE-2024-4973

CVE-2024-4973 affects code-projects Simple Chat System 1.0, with the vulnerable component being the /register.php handler. The root cause is improper handling of the parameters name, number, and address, enabling SQL injection. The vulnerability can be exploited remotely and public exploit visibi...

9.8CVSS7.5AI score0.00649EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2024/05/16 9:15 a.m.4 views

CVE-2024-4972

A vulnerability classified as critical has been found in code-projects Simple Chat System 1.0. This affects an unknown part of the file /login.php. The manipulation of the argument email/password leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclose...

9.8CVSS5.7AI score0.00615EPSS
Exploits1References4
NVD
NVD
added 2024/05/16 9:15 a.m.28 views

CVE-2024-4972

A vulnerability classified as critical has been found in code-projects Simple Chat System 1.0. This affects an unknown part of the file /login.php. The manipulation of the argument email/password leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclose...

9.8CVSS6.8AI score0.00615EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/05/16 9:0 a.m.20 views

CVE-2024-4972 code-projects Simple Chat System login.php sql injection

A vulnerability classified as critical has been found in code-projects Simple Chat System 1.0. This affects an unknown part of the file /login.php. The manipulation of the argument email/password leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclose...

6.5CVSS7.4AI score0.00615EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/05/16 9:0 a.m.41 views

CVE-2024-4972 code-projects Simple Chat System login.php sql injection

A vulnerability classified as critical has been found in code-projects Simple Chat System 1.0. This affects an unknown part of the file /login.php. The manipulation of the argument email/password leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclose...

6.5CVSS7.1AI score0.00615EPSS
Exploits1References4
CVE
CVE
added 2024/05/16 9:0 a.m.61 views

CVE-2024-4972

The CVE-2024-4972 entry concerns code-projects Simple Chat System 1.0. Affected component: login.php, where manipulating the email/password parameters enables SQL injection. This vulnerability is exploitable remotely, and public disclosures exist. Connected documents identify the affected product...

9.8CVSS7.3AI score0.00615EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2024/05/16 12:0 a.m.5 views

Simple Chat System 安全漏洞

Simple Chat System is a simple chat system by nurhodelta17 individual developer. A security vulnerability exists in Simple Chat System version 1.0, which stems from an incorrect manipulation of the parameters name/number/address that can lead to SQL injection...

9.8CVSS6.9AI score0.00649EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/05/16 12:0 a.m.5 views

Simple Chat System 跨站脚本漏洞

Simple Chat System is a simple chat system by the individual developer nurhodelta17. A cross-site scripting vulnerability exists in Simple Chat System version 1.0, which stems from the fact that incorrect manipulation of the parameter name can lead to cross-site scripting...

6.1CVSS4.2AI score0.0048EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/05/16 12:0 a.m.6 views

PT-2024-33661 · Code Projects · Simple Chat System

Name of the Vulnerable Software and Affected Versions: code-projects Simple Chat System version 1.0 Description: A problematic issue has been found in the Message Handler component, leading to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public...

6.1CVSS6.2AI score0.0048EPSS
Exploits1References8
CNNVD
CNNVD
added 2024/05/16 12:0 a.m.6 views

Simple Chat System 跨站脚本漏洞

Simple Chat System is a simple chat system by the individual developer nurhodelta17. A cross-site scripting vulnerability exists in Simple Chat System version 1.0. An attacker can exploit this vulnerability to perform cross-site scripting attacks...

6.1CVSS4.5AI score0.0048EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/05/16 12:0 a.m.6 views

PT-2024-33658 · Unknown · Simple Chat System

Name of the Vulnerable Software and Affected Versions: code-projects Simple Chat System version 1.0 Description: A critical issue has been found in the Simple Chat System, affecting an unknown part of the file /login.php. The manipulation of the email/password argument leads to SQL injection. It ...

9.8CVSS7.5AI score0.00615EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2024/05/16 12:0 a.m.14 views

PT-2024-33660 · Unknown · Code-Projects Simple Chat System

Name of the Vulnerable Software and Affected Versions: code-projects Simple Chat System version 1.0 Description: A problematic issue was found in the code-projects Simple Chat System, affecting an unknown function of the file /register.php. The manipulation of the name argument leads to cross-sit...

6.1CVSS6.6AI score0.0048EPSS
Exploits1References8
CNNVD
CNNVD
added 2024/05/16 12:0 a.m.5 views

Simple Chat System SQL Injection Vulnerability

Simple Chat System is a simple chat system by nurhodelta17 individual developer. A SQL injection vulnerability exists in Simple Chat System version 1.0, which stems from an incorrect manipulation of the parameters email/password that can lead to SQL injection...

9.8CVSS7.9AI score0.00615EPSS
Exploits1References5
Cvelist
Cvelist
added 2023/05/31 9:0 a.m.30 views

CVE-2023-3004 SourceCodester Simple Chat System POST Parameter sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Simple Chat System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php?action=readmsg of the component POST Parameter Handler. The manipulation of the argument convoid leads to sql...

6.5CVSS9.9AI score0.0082EPSS
Exploits1References3
CVE
CVE
added 2023/05/31 9:0 a.m.53 views

CVE-2023-3004

CVE-2023-3004 affects SourceCodester Simple Chat System 1.0, where SQL injection can be triggered in the POST Parameter Handler via /ajax.php?action=read_msg by manipulating convo_id/convo id. The vulnerability is exploitable remotely and has been disclosed publicly. Public sources report a Criti...

9.8CVSS8.3AI score0.0082EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2023/05/31 12:0 a.m.4 views

Simple Chat System SQL注入漏洞

Simple Chat System is a simple chat system by nurhodelta17 individual developer. A SQL injection vulnerability exists in Simple Chat System version 1.0, which stems from an incorrect manipulation of the parameter convoid that can lead to sql injection...

9.8CVSS7.1AI score0.0082EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/05/31 12:0 a.m.5 views

PT-2023-22516 · Sourcecodester · Sourcecodester Simple Chat System

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Chat System version 1.0 Description: A critical issue has been found in the file /ajax.php?action=read msg of the component POST Parameter Handler. The manipulation of the convo id argument leads to sql injection. The...

9.8CVSS7.8AI score0.0082EPSS
Exploits1References5
Rows per page
Query Builder