Vulnerabilities > V3Chat
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-12-31 | CVE-2008-5785 | SQL Injection vulnerability in V3Chat V3 Chat Profiles Dating Script 3.0.2 SQL injection vulnerability in V3 Chat - Profiles/Dating Script 3.0.2 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password fields. | 7.5 |
2008-12-31 | CVE-2008-5784 | Reliance on Cookies without Validation and Integrity Checking vulnerability in V3Chat V3 Chat Profiles Dating Script 3.0.2 V3 Chat - Profiles/Dating Script 3.0.2 allows remote attackers to bypass authentication and gain administrative access by setting the admin cookie to 1. | 9.8 |
2008-12-31 | CVE-2008-5783 | Improper Authentication vulnerability in V3Chat V3 Chat Live Support 3.0.4 admin/index.php in V3 Chat Live Support 3.0.4 allows remote attackers to bypass authentication and gain administrative access by setting the admin cookie to 1. | 7.5 |