{"id":8977,"date":"2025-07-25T13:50:39","date_gmt":"2025-07-25T13:50:39","guid":{"rendered":"http:\/\/localhost\/?p=8977"},"modified":"2025-07-25T13:50:39","modified_gmt":"2025-07-25T13:50:39","slug":"code-projects-public-chat-room-sendmessagephp-sql-injection","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=8977","title":{"rendered":"code-projects Public Chat Room send_message.php sql injection"},"content":{"rendered":"
\n

CVE Details<\/h2>\n
\n
\n

Basic Information<\/h3>\n\n\n\n\n\n
Title<\/th>\ncode-projects Public Chat Room send_message.php sql injection<\/td>\n<\/tr>\n
Type<\/th>\ncve<\/td>\n<\/tr>\n
Published<\/th>\n2025-07-25T18:02:06.168Z<\/td>\n<\/tr>\n
Modified<\/th>\n2025-07-25T18:24:17.352Z<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Product Information<\/h3>\n\n\n\n\n
Vendor<\/th>\ncode-projects<\/td>\n<\/tr>\n
Product<\/th>\nPublic Chat Room<\/td>\n<\/tr>\n
Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n<\/div>\n
\n

CVSS Information<\/h3>\n\n\n\n
Base Score<\/th>\n5.3 (MEDIUM)<\/td>\n<\/tr>\n
Attack Vector<\/th>\nCVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:L\/UI:N\/VC:L\/VI:L\/VA:L\/SC:N\/SI:N\/SA:N\/E:P<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

AI Analysis<\/h3>\n\n\n\n\n\n\n
AI Description<\/th>\nA SQL injection vulnerability in the send_message.php file of code-projects Public Chat Room 1.0 allows remote attackers to inject arbitrary SQL commands by manipulating the ID argument. This vulnerability is considered critical as it can lead to unauthorized access and data manipulation.<\/td>\n<\/tr>\n
AI Severity<\/th>\nMedium<\/td>\n<\/tr>\n
AI Vendor<\/th>\ncode-projects.org<\/td>\n<\/tr>\n
AI Product<\/th>\nPublic Chat Room<\/td>\n<\/tr>\n
AI Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Affected Products<\/h4>\n