PT-2025-54400 · Elinicksic+1 · Razgover
Published
2025-12-31
·
Updated
2025-12-31
·
CVE-2019-25262
CVSS v2.0
4.0
Medium
| Vector | AV:N/AC:L/Au:S/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
elinicksic Razgover versions prior to 995dd89d0e3ec5522966724be23a5d58ca1bdac3
Description
A remote cross-site scripting issue exists in the Chat Message Handler component within the 'Chattify/send.php' file. The flaw allows a remote attacker to execute malicious scripts by manipulating the
msg argument.Recommendations
Apply patch 995dd89d0e3ec5522966724be23a5d58ca1bdac3 to resolve the issue.
Fix
Code Injection
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Razgover