CVE-2024-4975

Summary: CVE-2024-4975 affects code-projects Simple Chat System 1.0, specifically the Message Handler component. The connected PT-2024-33661 and related sources confirm a cross-site scripting (XSS) vulnerability that can be triggered remotely. The exploit has been disclosed publicly. Affected com...

CVE-2024-4974

CVE-2024-4974 affects code-projects Simple Chat System 1.0, specifically the /register.php file. The vulnerability arises from manipulation of the name argument, enabling cross-site scripting (XSS). The issue is exploitable remotely, and public disclosure is noted. Multiple connected documents co...

CVE-2024-4973

CVE-2024-4973 affects code-projects Simple Chat System 1.0, with the vulnerable component being the /register.php handler. The root cause is improper handling of the parameters name, number, and address, enabling SQL injection. The vulnerability can be exploited remotely and public exploit visibi...

CVE-2024-4972

The CVE-2024-4972 entry concerns code-projects Simple Chat System 1.0. Affected component: login.php, where manipulating the email/password parameters enables SQL injection. This vulnerability is exploitable remotely, and public disclosures exist. Connected documents identify the affected product...

CVE-2024-13039

CVE-2024-13039 affects code-projects Simple Chat System 1.0. The vulnerability is an SQL injection in the /add_user.php functionality triggered by manipulating name, email, password, or number. It can be exploited remotely and is described as critical/high impact in multiple records. No official ...