CVE-2011-2180

Name of the Vulnerable Software and Affected Versions A Really Simple Chat (ARSC) versions 3.3-rc2

Description The issue is related to a cross-site scripting (XSS) vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the arsc link parameter in the dereferer.php file.

Recommendations For A Really Simple Chat (ARSC) version 3.3-rc2, consider restricting access to the dereferer.php file until a patch is available. As a temporary workaround, avoid using the arsc link parameter in the affected file to minimize the risk of exploitation.