CVE-2020-37151 phpMyChat Plus 1.98 'deluser.php' SQL Injection

phpMyChat Plus 1.98 contains a SQL injection vulnerability in the deluser.php page through the pmcusername parameter that allows attackers to manipulate database queries. Attackers can exploit boolean-based, error-based, and time-based blind SQL injection techniques to extract sensitive database...

phpMyChat Plus SQL注入漏洞

phpMyChat Plus is a chat room system developed by Ciprianmp. Version 1.98 of phpMyChat Plus contains an SQL injection vulnerability. This vulnerability stems from the pmcusername parameter in the deluser.php page, which may lead to the exposure of sensitive database information...

PT-2026-6559

Name of the Vulnerable Software and Affected Versions phpMyChat Plus version 1.98 Description The software contains a SQL injection issue in the 'deluser.php' page. This allows manipulation of database queries through the pmc username parameter. Attackers can use boolean-based, error-based, and...

TinyWeb Server 操作系统命令注入漏洞

TinyWeb Server is a web server by Maxim Masiutin, an individual developer. An operating system command injection vulnerability exists in versions of TinyWeb Server prior to 1.98, which stems from passing commands via CGI ISINDEX style query parameters, which could lead to an OS command injection...

KLA90917 PE vulnerability in Microsoft Visual Studio Code

An elevation of privilege vulnerability was found in Microsoft Visual Studio Code. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2025-26631 Exploitation Related products Microsoft-Visual-Studio Visual-Studio-Code Microsoft-Visual-Studio-Code CVE list...

WordPress Share This Image plugin <= 1.98 - Open Redirection vulnerability

Open Redirection vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin Share This Image versions = 1.98...

Delta Electronics TPEditor Buffer Error Vulnerability

Delta Electronics TPEditor is a Windows-based Delta text panel programming software from Delta Electronics Taiwan, China. A security vulnerability exists in Delta Electronics TPEditor v1.98 and prior that could allow an attacker to execute code with the privileges of the application...

Delta Electronics TPEditor 缓冲区错误漏洞

TPEditor is programming software for Delta Text Panels running on Windows. An out-of-bounds write vulnerability exists in TPEditor 1.98 and earlier versions. An attacker can exploit this vulnerability to execute arbitrary code via specially crafted project files...

CVE-2020-9265

phpMyChat-Plus 1.98 is vulnerable to multiple SQL injections against the deluser.php Delete User functionality, as demonstrated by pmcusername...

phpMyChat-Plus Cross-Site Scripting Vulnerability

phpMyChat-Plus is a chat room system based on PHP and MySQL. A cross-site scripting vulnerability exists in phpMyChat-Plus version 1.98. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit this vulnerability to execute...