Vulnerabilities > Cgiirc

DATE CVE VULNERABILITY TITLE RISK
2017-06-06 CVE-2017-8920 Cross-site Scripting vulnerability in Cgiirc Cgi:Irc
irc.cgi in CGI:IRC before 0.5.12 reflects user-supplied input from the R parameter without proper output encoding, aka XSS.
network
cgiirc CWE-79
4.3
2011-02-19 CVE-2011-0050 Cross-Site Scripting vulnerability in Cgiirc Cgi:Irc
Cross-site scripting (XSS) vulnerability in the nonjs interface (interfaces/nonjs.pm) in CGI:IRC before 0.5.10 allows remote attackers to inject arbitrary web script or HTML via the R parameter.
network
cgiirc CWE-79
4.3
2006-05-02 CVE-2006-2148 Remote Buffer Overflow and Denial Of Service vulnerability in Cgiirc 0.5.4/0.5.7
Multiple buffer overflows in client.c in CGI:IRC (CGIIRC) before 0.5.8 might allow remote attackers to execute arbitrary code via (1) cookies or (2) the query string.
network
low complexity
cgiirc
7.5