Summary
CometChat is prone to a cross-site scripting vulnerability and a remote code-execution vulnerability because the application fails to sufficiently sanitize user-supplied data.
An attacker may leverage the cross-site scripting issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie- based authentication credentials and launch other attacks.
An attacker can exploit the remote code-execution issue to execute arbitrary code in the context of the application. Failed attacks may cause denial-of-service conditions.
Solution
Updates are available. Please see the references or vendor advisory for more information.
References
Updated on 2015-03-25
Severity
Classification
-
CVSS Base Score: 9.0
AV:N/AC:L/Au:N/C:C/I:P/A:P
Related Vulnerabilities
- A-A-S Application Access Server Multiple Vulnerabilities
- Adiscon LogAnalyzer Multiple SQL Injection and XSS Vulnerabilities
- Apache Struts2 Showcase Skill Name Remote Code Execution Vulnerability
- ASP Inline Corporate Calendar SQL injection
- Apache Tomcat Windows Installer Privilege Escalation Vulnerability