Vulnerabilities > Prochatrooms
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-10-20 | CVE-2014-5275 | SQL Injection vulnerability in Prochatrooms Text Chat Rooms 8.2.0 Multiple SQL injection vulnerabilities in includes/functions.php in Pro Chat Rooms Text Chat Rooms 8.2.0 allow remote authenticated users to execute arbitrary SQL commands via the (1) password, (2) email, or (3) id parameter. | 6.5 |
2009-03-20 | CVE-2008-6502 | Path Traversal vulnerability in Prochatrooms PRO Chat Rooms 3.0.2 Directory traversal vulnerability in Pro Chat Rooms 3.0.2 allows remote authenticated users to select an arbitrary local PHP script as an avatar via a .. | 4.6 |
2009-03-20 | CVE-2008-6501 | Cross-Site Scripting vulnerability in Prochatrooms PRO Chat Rooms 3.0.2 Cross-site scripting (XSS) vulnerability in profiles/index.php in Pro Chat Rooms 3.0.2 allows remote attackers to inject arbitrary web script or HTML via the gud parameter. | 4.3 |