Stephen Craton Chatness — known CVE vulnerabilities
Every CVE whose affected-product data names Stephen Craton Chatness, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2007-2147 — CVSS 10.0 (critical): admin/options.php in Stephen Craton (aka WiredPHP) Chatness 2.5.3 and earlier does not check for administrative credentials, which allows…
CVE-2007-2149 — CVSS 10.0 (critical): Stephen Craton (aka WiredPHP) Chatness 2.5.3 and earlier stores usernames and unencrypted passwords in (1) classes/vars.php and (2)…
CVE-2007-2148 — CVSS 6.5 (medium): Direct static code injection vulnerability in admin/save.php in Stephen Craton (aka WiredPHP) Chatness 2.5.3 and earlier allows remote…