Vulnerabilities > X7 Group > X7 Chat > 2.0

DATE	CVE	VULNERABILITY TITLE	RISK
2006-07-25	CVE-2006-3851	SQL Injection vulnerability in X7 Group X7 Chat 2.0/2.0.2/2.0.4 SQL injection vulnerability in upgradev1.php in X7 Chat 2.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the old_prefix parameter. network low complexity x7-group	7.5
2006-05-03	CVE-2006-2156	Local File Include vulnerability in X7 Chat Directory traversal vulnerability in help/index.php in X7 Chat 2.0 and earlier allows remote attackers to include arbitrary files via .. network low complexity x7-group	6.4