Every CVE whose affected-product data names Php Heaven Phpmychat, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2004-2715 — CVSS 7.5 (high): edituser.php3 in PHPMyChat 0.14.5 allow remote attackers to bypass authentication and gain administrative privileges by setting the…
CVE-2004-2716 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in usersL.php3 in PHPMyChat 0.14.5 allow remote attackers to execute arbitrary SQL commands via the…
CVE-2004-2718 — CVSS 4.3 (medium): PHPMyChat 0.14.5 does not remove or protect setup.php3 after installation, which allows attackers to obtain sensitive information including…
CVE-2007-6297 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in PHPMyChat 0.14.5 allow remote attackers to inject arbitrary web script or HTML via…
CVE-2004-2717 — CVSS 2.6 (low): Multiple directory traversal vulnerabilities in admin.php3 in PHPMyChat 0.14.5 allow remote attackers with administrative privileges to…