RSS   Vulnerabilities for 'Pro chat rooms'   RSS

2008-11-14
 
CVE-2008-5070

CWE-89
 

 
SQL injection vulnerability in Pro Chat Rooms 3.0.3, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the gud parameter to (1) profiles/index.php and (2) profiles/admin.php.

 

 >>> Vendor: Pro chat rooms 2 Products
Pro chat rooms
Text chat rooms


Copyright 2024, cxsecurity.com

 

Back to Top