← back
CVE-2006-5837

CVE-2006-5837

EPSS 2.4%
Static code injection vulnerability in chat_panel.php in the SimpleChat 1.0.0 module for iWare Professional CMS allows remote attackers to inject arbitrary PHP code into chat_log.php via the msg parameter.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/2733unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/22748https://exchange.xforce.ibmcloud.com/vulnerabilities/30078https://www.exploit-db.com/exploits/2733http://www.securityfocus.com/bid/20947http://www.vupen.com/english/advisories/2006/4376