SZ NetChat before 7.9 has XSS in the MyName input field of the Options module. Attackers are able to inject commands to compromise the enabled HTTP server web frontend.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.vulnerability-lab.com/get_content.php?id=2171 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-12-23T02:00:00Z
Updated: 2024-09-17T01:16:53.116Z
Reserved: 2018-12-22T00:00:00Z
Link: CVE-2018-20370
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-12-23T02:29:00.390
Modified: 2024-11-21T04:01:20.393
Link: CVE-2018-20370
Redhat
No data.