CVE-2007-0485

Name of the Vulnerable Software and Affected Versions WebChat version 0.77

Description A remote file inclusion issue in the defines.php file of WebChat allows remote attackers to execute arbitrary PHP code by providing a URL in the WEBCHATPATH parameter.

Recommendations For WebChat version 0.77, avoid using the WEBCHATPATH parameter in the affected API endpoint until the issue is resolved. Restrict access to the defines.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.