Vulnerabilities > Darrens 5 Dollar Script Archive > Flashchat > 4.7.8
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-02-07 | CVE-2007-0834 | Cross-Site Scripting vulnerability in Darrens 5-Dollar Script Archive Flashchat 4.7.8 Cross-site scripting (XSS) vulnerability in FlashChat 4.7.8 allows remote attackers to inject arbitrary web script or HTML via the user name field when the user joins a chat room, a different vulnerability than CVE-2007-0807. network darrens-5-dollar-script-archive | 6.8 |
2007-02-07 | CVE-2007-0807 | HTML Injection vulnerability in Darrens 5-Dollar Script Archive Flashchat 4.7.8 Cross-site scripting (XSS) vulnerability in info.php in flashChat 4.7.8 allows remote attackers to inject arbitrary web script or HTML via a channel title (aka room name) that is not properly handled by the "who's online" feature. network darrens-5-dollar-script-archive | 6.8 |