CVE-2008-5784

CRITICAL

V3 Chat - Profiles/Dating Script 3.0.2 - Auth Bypass

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2008-5784. PoCs published by Stack, Cyber-Zone.

AI-analyzed exploit summary The exploit demonstrates an insecure cookie handling vulnerability in V3 Chat - Profiles/Dating Script v3.0.2, allowing an attacker to set an admin cookie via JavaScript, bypassing authentication.

Description

V3 Chat - Profiles/Dating Script 3.0.2 allows remote attackers to bypass authentication and gain administrative access by setting the admin cookie to 1.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Stack · textwebappsphp
https://www.exploit-db.com/exploits/7063

The exploit demonstrates an insecure cookie handling vulnerability in V3 Chat - Profiles/Dating Script v3.0.2, allowing an attacker to set an admin cookie via JavaScript, bypassing authentication.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: V3 Chat - Profiles/Dating Script v3.0.2
No auth needed
Prerequisites: Victim must execute the JavaScript code
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Cyber-Zone · textwebappsphp
https://www.exploit-db.com/exploits/7069

This exploit demonstrates an insecure cookie handling vulnerability in V3 Chat Live Support v3.0.4, allowing an attacker to set an admin cookie via JavaScript and gain unauthorized access to the admin panel.

Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: V3 Chat Live Support v3.0.4
No auth needed
Prerequisites: Victim must execute the provided JavaScript code
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/46479
Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/7063
Broken Link, Exploit, Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/32216
Broken Link vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/3071
Broken Link, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32603

Scores

CVSS v3 9.8
EPSS 0.0579
EPSS Percentile 90.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-565
Status published
Products (1)
v3chat/v3_chat_profiles_dating_script 3.0.2
Published Dec 31, 2008
Tracked Since Feb 18, 2026