Description
PHPMyChat 0.14.5 does not remove or protect setup.php3 after installation, which allows attackers to obtain sensitive information including database passwords via a direct request.
Exploits (1)
Scores
EPSS
0.0284
EPSS Percentile
86.2%
Details
CWE
CWE-264
Status
published
Products (1)
php_heaven/phpmychat
0.14.5
Published
Dec 31, 2004
Tracked Since
Feb 18, 2026