CVE-2006-0416

sleeperchat < 0.3f - Unauthenticated Authentication Bypass via txt Parameter

Title source: llm
STIX 2.1

Description

SleeperChat 0.3f and earlier allows remote attackers to bypass authentication and create new entries via the txt parameter to (1) chat_no.php and (2) chat_if.php.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/24357
Exploit vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1015525

Scores

EPSS 0.0150
EPSS Percentile 71.1%

Details

CWE
CWE-287
Status published
Products (1)
sleeperchat/sleeperchat < 0.3f
Published Jan 25, 2006
Tracked Since Feb 18, 2026