2 matches found
CVE-2024-10433
The CVE-2024-10433 issue affects Project Worlds Simple Web-Based Chat Application 1.0. The vulnerability is a cross-site scripting flaw in the /index.php page, triggered by manipulating the Name/Comment parameter. It is described as exploitable remotely, with public disclosure of exploits. The av...
CVE-2024-10432
CVE-2024-10432 affects Project Worlds Simple Web-Based Chat Application 1.0. The vulnerability resides in the /index.php page, where manipulating the username parameter enables SQL injection due to improper input handling. This is a network-accessible issue that can be exploited remotely, with th...