Mibew : Security Vulnerabilities, CVEs, (XSS)

CVE-2020-17476

Mibew Messenger before 3.2.7 allows XSS via a crafted user name.
Max CVSS
6.1
EPSS Score
0.08%
Published
2020-08-10
Updated
2020-08-10

CVE-2012-0829

Multiple cross-site request forgery (CSRF) vulnerabilities in Mibew Messenger 1.6.4 and earlier allow remote attackers to hijack the authentication of operators for requests that insert cross-site scripting (XSS) sequences via the (1) address or (2) threadid parameters to operator/ban.php; or (3) geolinkparams, (4) title, or (5) chattitle parameters to operator/settings.php.
Max CVSS
6.0
EPSS Score
0.41%
Published
2012-02-14
Updated
2017-08-29
2 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close