CVE-2008-6501
Pro Chat Rooms 3.0.2 - Cross-Site Scripting via Gud Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2008-6501. PoCs published by ZynbER.
AI-analyzed exploit summary This writeup describes XSS and CSRF vulnerabilities in Pro Chat Rooms Version 3.0.2. The XSS is due to unsanitized user input in the 'gud' parameter, while the CSRF exploits the avatar parameter to force actions like logging users out.
Description
Cross-site scripting (XSS) vulnerability in profiles/index.php in Pro Chat Rooms 3.0.2 allows remote attackers to inject arbitrary web script or HTML via the gud parameter.
Exploits (1)
This writeup describes XSS and CSRF vulnerabilities in Pro Chat Rooms Version 3.0.2. The XSS is due to unsanitized user input in the 'gud' parameter, while the CSRF exploits the avatar parameter to force actions like logging users out.