Konversation: >> Konversation >> 1.4 Security Vulnerabilities
Konversation 1.4.x, 1.5.x, 1.6.x, and 1.7.x before 1.7.3 allow remote attackers to cause a denial of service (crash) via vectors related to parsing of IRC color formatting codes.
CVSS Score
7.5
EPSS Score
0.015
Published
2017-11-15
CRLF injection vulnerability in the included media script in Konversation allows user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file.
CVSS Score
6.8
EPSS Score
0.013
Published
2007-08-18