← back
CVE-2014-5275

CVE-2014-5275

EPSS 1.9%
Multiple SQL injection vulnerabilities in includes/functions.php in Pro Chat Rooms Text Chat Rooms 8.2.0 allow remote authenticated users to execute arbitrary SQL commands via the (1) password, (2) email, or (3) id parameter.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2014-08/0026.htmlhttp://packetstormsecurity.com/files/127775/Pro-Chat-Rooms-8.2.0-XSS-Shell-Upload-SQL-Injection.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/95127http://www.exploit-db.com/exploits/34275http://www.osvdb.org/109829