Vulnerabilities > Pcpin

DATE	CVE	VULNERABILITY TITLE	RISK
2008-05-28	CVE-2008-2485	Cross-Site Scripting vulnerability in Pcpin Chat Cross-site scripting (XSS) vulnerability in the URL redirection script (inc/url_redirection.inc.php) in PCPIN Chat before 6.11 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. network pcpin CWE-79	4.3
2006-04-21	CVE-2006-1963	SQL Injection vulnerability in PCPIN Chat Main.PHP Directory traversal vulnerability in main.php in PCPIN Chat 5.0.4 and earlier allows remote authenticated users to include and execute arbitrary PHP code via a ".." (dot dot) in a language cookie, as demonstrated by uploading then accessing a smiliefile image that actually contains PHP code. network low complexity pcpin	5.5
2006-04-21	CVE-2006-1962	SQL Injection vulnerability in Pcpin Chat SQL injection vulnerability in PCPIN Chat 5.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the username field (login parameter) to main.php. network low complexity pcpin CWE-89	7.5

Vulnerabilities > Pcpin {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Pcpin"}]}