Filtered by vendor Chatengine Project Subscriptions
Total 7 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-30326 1 Chatengine Project 1 Chatengine 2024-11-21 6.1 Medium
Cross Site Scripting (XSS) vulnerability in username field in /WebContent/WEB-INF/lib/chatbox.jsp in wliang6 ChatEngine commit fded8e710ad59f816867ad47d7fc4862f6502f3e, allows attackers to execute arbitrary code.
CVE-2023-30325 1 Chatengine Project 1 Chatengine 2024-11-21 7.5 High
SQL Injection vulnerability in textMessage parameter in /src/chatbotapp/chatWindow.java in wliang6 ChatEngine v.1.0, allows attackers to gain sensitive information.
CVE-2023-30323 1 Chatengine Project 1 Chatengine 2024-11-21 7.5 High
SQL Injection vulnerability in username field in /src/chatbotapp/chatWindow.java in Payatu ChatEngine v.1.0, allows attackers to gain sensitive information.
CVE-2023-30322 1 Chatengine Project 1 Chatengine 2024-11-21 5.4 Medium
Cross Site Scripting (XSS) vulnerability in username field in /src/chatbotapp/chatWindow.java in Payatu ChatEngine v.1.0, allows attackers to execute arbitrary code.
CVE-2023-30321 1 Chatengine Project 1 Chatengine 2024-11-21 9.0 Critical
Cross Site Scripting (XSS) vulnerability in textMessage field in /src/chatbotapp/LoginServlet.java in wliang6 ChatEngine commit fded8e710ad59f816867ad47d7fc4862f6502f3e, allows attackers to execute arbitrary code.
CVE-2023-30320 1 Chatengine Project 1 Chatengine 2024-11-21 9.0 Critical
Cross Site Scripting (XSS) vulnerability in textMessage field in /src/chatbotapp/chatWindow.java in wliang6 ChatEngine commit fded8e710ad59f816867ad47d7fc4862f6502f3e, allows attackers to execute arbitrary code.
CVE-2023-30319 1 Chatengine Project 1 Chatengine 2024-11-21 9.6 Critical
Cross Site Scripting (XSS) vulnerability in username field in /src/chatbotapp/LoginServlet.java in wliang6 ChatEngine commit fded8e710ad59f816867ad47d7fc4862f6502f3e, allows attackers to execute arbitrary code.