Vulnerabilities > CVE-2006-3971 - Remote vulnerability in Scott Weedon Ajax Chat 0.1
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
scott-weedon
Summary
Cross-site scripting (XSS) vulnerability in visitor/livesupport/chat.php in Scott Weedon Ajax Chat, possibly 0.1, allows remote attackers to inject arbitrary web script or HTML via the userid parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |