Filtered by vendor Scott Weedon Subscriptions
Filtered by product Ajax Chat Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2006-3972 1 Scott Weedon 1 Ajax Chat 2024-11-21 N/A
Directory traversal vulnerability in includes/operator_chattranscript.php in Scott Weedon Ajax Chat, possibly 0.1, allows remote attackers to read arbitrary files via a .. (dot dot) in the chatid parameter.
CVE-2006-3971 1 Scott Weedon 1 Ajax Chat 2024-11-21 N/A
Cross-site scripting (XSS) vulnerability in visitor/livesupport/chat.php in Scott Weedon Ajax Chat, possibly 0.1, allows remote attackers to inject arbitrary web script or HTML via the userid parameter.