Описание
Cross-site scripting (XSS) vulnerability in FlashChat 4.7.8 allows remote attackers to inject arbitrary web script or HTML via the user name field when the user joins a chat room, a different vulnerability than CVE-2007-0807. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:darrens_5-dollar_script_archive:flashchat:4.7.8:*:*:*:*:*:*:*
EPSS
Процентиль: 64%
0.00489
Низкий
6.8 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Cross-site scripting (XSS) vulnerability in FlashChat 4.7.8 allows remote attackers to inject arbitrary web script or HTML via the user name field when the user joins a chat room, a different vulnerability than CVE-2007-0807. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
EPSS
Процентиль: 64%
0.00489
Низкий
6.8 Medium
CVSS2
Дефекты
NVD-CWE-Other