Vulnerabilities > Cgiirc
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-06-06 | CVE-2017-8920 | Cross-site Scripting vulnerability in Cgiirc Cgi:Irc irc.cgi in CGI:IRC before 0.5.12 reflects user-supplied input from the R parameter without proper output encoding, aka XSS. | 4.3 |
2011-02-19 | CVE-2011-0050 | Cross-Site Scripting vulnerability in Cgiirc Cgi:Irc Cross-site scripting (XSS) vulnerability in the nonjs interface (interfaces/nonjs.pm) in CGI:IRC before 0.5.10 allows remote attackers to inject arbitrary web script or HTML via the R parameter. | 4.3 |
2006-05-02 | CVE-2006-2148 | Remote Buffer Overflow and Denial Of Service vulnerability in Cgiirc 0.5.4/0.5.7 Multiple buffer overflows in client.c in CGI:IRC (CGIIRC) before 0.5.8 might allow remote attackers to execute arbitrary code via (1) cookies or (2) the query string. | 7.5 |