Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Phpfreechat Security Vulnerabilities

cve
cve

CVE-2008-3428

Session fixation vulnerability in phpFreeChat 1.1 allows remote authenticated users to hijack web sessions by setting the session_id parameter to match the victim's nickid parameter.

6.2AI Score

0.003EPSS

2008-07-31 10:41 PM
20
cve
cve

CVE-2011-3777

phpFreeChat 1.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/zilveer/style.css.php and certain other files.

6.3AI Score

0.004EPSS

2011-09-24 12:55 AM
23
cve
cve

CVE-2018-5954

phpFreeChat 1.7 and earlier allows remote attackers to cause a denial of service by sending a large number of connect commands.

7.5CVSS

7.3AI Score

0.028EPSS

2018-01-25 04:29 PM
42