PT-2026-32262 · Code Projects · Simple Chatbox

Ahmadmarzook

Publicado

2026-04-13

Atualizado

2026-04-13

CVE-2026-6161

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

A vulnerability was determined in code-projects Simple ChatBox up to 1.0. This affects an unknown part of the file /chatbox/insert.php of the component Endpoint. Executing a manipulation of the argument msg can lead to sql injection. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be utilized.

Exploit

Correção

Special Elements Injection

SQL injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-74CWE-89

Identificadores relacionados

CVE-2026-6161

Produtos afetados

Simple Chatbox

PT-2026-32262 · Code Projects · Simple Chatbox

CVE-2026-6161

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6