V3 Chat : Security Vulnerabilities, CVEs, Published In 2006 (Information Leak)
V3 Chat allows remote attackers to obtain the installation path via (1) an invalid id parameter to mail/index.php or (2) membername parameter to messenger/online.php, which displays the path in an error page due to an incorrect SQL statement.
Max CVSS
2.6
EPSS Score
1.64%
Published
2006-07-06
Updated
2018-10-18
1 vulnerabilities found