CVE-2005-1869

Name of the Vulnerable Software and Affected Versions MWChat versions 6.x

Description The issue allows remote attackers to execute arbitrary PHP code via the CONFIG[MWCHAT Libs] parameter in the start lobby.php file.

Recommendations For MWChat version 6.x, consider restricting access to the start lobby.php file and avoid using the CONFIG[MWCHAT Libs] parameter until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.