CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

X7 Group: >> X7 Chat >> 2.0.4.4 Security Vulnerabilities

CVE-2012-6047

Cross-site request forgery (CSRF) vulnerability in X7 Chat 2.0.5.1 and earlier allows remote attackers to hijack the authentication of administrators for requests that add a user to an arbitrary group via the users page in an adminpanel action to index.php.

CVSS Score

6.8

EPSS Score

0.002

Published

2012-11-27

CVE-2008-0278

SQL injection vulnerability in index.php in X7 Chat 2.0.5 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the day parameter in a sm_window action.

CVSS Score

6.0

EPSS Score

0.003

Published

2008-01-15

Page 1

Vulnerabilities

Vulnerable Software

X7 Group: >> X7 Chat >> 2.0.4.4 Security Vulnerabilities

Products

Pricing

Contact Us