| ID |
CVE-2005-0863
|
| Summary |
Cross-site scripting (XSS) vulnerability in PHPOpenChat v3.x allows remote attackers to inject arbitrary web script or HTML via (1) the chatter parameter to regulars.php or (2) the chatter, chatter1, chatter2, chatter3, or chatter4 parameters to register.php. |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:a:phpopenchat:phpopenchat:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:phpopenchat:phpopenchat:3.0.0:*:*:*:*:*:*:*
-
cpe:2.3:a:phpopenchat:phpopenchat:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:phpopenchat:phpopenchat:3.0.1:*:*:*:*:*:*:*
-
cpe:2.3:a:phpopenchat:phpopenchat:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:phpopenchat:phpopenchat:3.0.2:*:*:*:*:*:*:*
|
| CVSS |
| Base: | 4.3 (as of 11-07-2017 - 01:32) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
MEDIUM |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| NONE |
PARTIAL |
NONE |
|
| cvss-vector
via4
|
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
| refmap
via4
|
| bid | 12841 | | bugtraq | 20050317 [PersianHacker.NET 200503-09]PHPOpenChat v3.x XSS Multiple Vulnerability | | secunia | 14651 | | xf | phpopenchat-regulars-register-xss(19748) |
|
| Last major update |
11-07-2017 - 01:32 |
| Published |
02-05-2005 - 04:00 |
| Last modified |
11-07-2017 - 01:32 |
