123flashchat

2 CVEs • 2 products

Products (2)

Click to collapse

Toggle

123 Flash Chat Module

123_flash_chat_module

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2008-6069 1123flashchat 1Echat Plugin Apr 23, 2026 Feb 10, 2009 N/A· v4 N/A· v3 6.8 MEDIUM· v2 SQL injection vulnerability in e107chat.php in the eChat plugin 4.2 for e107, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the nick parameter.
CVE-2008-1989 2123flashchat E107 2123 Flash Chat Module E107 Apr 23, 2026 Apr 27, 2008 N/A· v4 N/A· v3 10.0 HIGH· v2 PHP remote file inclusion vulnerability in 123flashchat.php in the 123 Flash Chat 6.8.0 module for e107, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the e107path p...Show more PHP remote file inclusion vulnerability in 123flashchat.php in the 123 Flash Chat 6.8.0 module for e107, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the e107path parameter.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2008-6069

1123flashchat

1Echat Plugin

Apr 23, 2026

Feb 10, 2009

N/A· v4

N/A· v3

6.8 MEDIUM· v2

SQL injection vulnerability in e107chat.php in the eChat plugin 4.2 for e107, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the nick parameter.

CVE-2008-1989

2123flashchat

E107

2123 Flash Chat Module

E107

Apr 23, 2026

Apr 27, 2008

N/A· v4

N/A· v3

10.0 HIGH· v2

PHP remote file inclusion vulnerability in 123flashchat.php in the 123 Flash Chat 6.8.0 module for e107, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the e107path p...Show more