Date published: 2014-10-20T12:55:09.293-04:00
Date last modified: 2017-09-07T21:29:05.073-04:00
CVSS Score: 6.5
Principal attack vector: NETWORK
Reference URL: http://archives.neohapsis.com/archives/bugtraq/2014-08/0026.html
Summary: Multiple SQL injection vulnerabilities in includes/functions.php in Pro Chat Rooms Text Chat Rooms 8.2.0 allow remote authenticated users to execute arbitrary SQL commands via the (1) password, (2) email, or (3) id parameter.