RSS   Vulnerabilities for 'Text chat rooms'   RSS

2014-10-20
 
CVE-2014-5276

 

 
Multiple cross-site scripting (XSS) vulnerabilities in Pro Chat Rooms Text Chat Rooms 8.2.0 allow remote authenticated users to inject arbitrary web script or HTML via (1) an uploaded profile picture or (2) the edit parameter to profiles/index.php.

 
 
CVE-2014-5275

 

 
Multiple SQL injection vulnerabilities in includes/functions.php in Pro Chat Rooms Text Chat Rooms 8.2.0 allow remote authenticated users to execute arbitrary SQL commands via the (1) password, (2) email, or (3) id parameter.

 

 >>> Vendor: Pro chat rooms 2 Products
Pro chat rooms
Text chat rooms


Copyright 2024, cxsecurity.com

 

Back to Top