Vulnerabilities > CVE-2006-6995 - Unspecified vulnerability in V3 Chat V3Chat Instant Messenger
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN v3-chat
exploit available
Summary
mycontacts.php in V3 Chat allows remote authenticated users to gain privileges as other users via a modified membername parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | V3 Chat Instant Messenger mycontacts.php membername Arbitrary User Buddy List Manipulation. CVE-2006-6995. Webapps exploit for php platform |
| id | EDB-ID:28075 |
| last seen | 2016-02-03 |
| modified | 2006-06-20 |
| published | 2006-06-20 |
| reporter | Luny |
| source | https://www.exploit-db.com/download/28075/ |
| title | V3 Chat Instant Messenger - mycontacts.php membername Arbitrary User Buddy List Manipulation |
References
- http://www.securityfocus.com/archive/1/437755/100/200/threaded
- http://www.securityfocus.com/bid/18543
- http://www.vupen.com/english/advisories/2006/2474
- http://www.securityfocus.com/archive/1/437755/100/200/threaded
- http://www.vupen.com/english/advisories/2006/2474
- http://www.securityfocus.com/bid/18543