Vulnerabilities > Easy Chat Server Project > Easy Chat Server

DATE CVE VULNERABILITY TITLE RISK
2024-01-18 CVE-2024-0695 Improper Resource Shutdown or Release vulnerability in Easy Chat Server Project Easy Chat Server 3.1
A vulnerability, which was classified as problematic, has been found in EFS Easy Chat Server 3.1.
network
low complexity
easy-chat-server-project CWE-404
5.3
2023-10-04 CVE-2023-4494 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Easy Chat Server Project Easy Chat Server 3.1
Stack-based buffer overflow vulnerability in Easy Chat Server 3.1 version.
network
low complexity
easy-chat-server-project CWE-119
critical
9.8
2023-10-04 CVE-2023-4495 Cross-site Scripting vulnerability in Easy Chat Server Project Easy Chat Server
Easy Chat Server, in its 3.1 version and before, does not sufficiently encrypt user-controlled inputs, resulting in a Cross-Site Scripting (XSS) vulnerability stored via /registresult.htm (POST method), in the Resume parameter.
network
low complexity
easy-chat-server-project CWE-79
6.1
2023-10-04 CVE-2023-4496 Cross-site Scripting vulnerability in Easy Chat Server Project Easy Chat Server
Easy Chat Server, in its 3.1 version and before, does not sufficiently encrypt user-controlled inputs, resulting in a Cross-Site Scripting (XSS) vulnerability stored via /body2.ghp (POST method), in the mtowho parameter.
network
low complexity
easy-chat-server-project CWE-79
6.1
2023-10-04 CVE-2023-4497 Cross-site Scripting vulnerability in Easy Chat Server Project Easy Chat Server
Easy Chat Server, in its 3.1 version and before, does not sufficiently encrypt user-controlled inputs, resulting in a Cross-Site Scripting (XSS) vulnerability stored via /registresult.htm (POST method), in the Icon parameter.
network
low complexity
easy-chat-server-project CWE-79
6.1