Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Webchess Project Subscribe
Filtered by product Webchess
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-22959 1 Webchess Project 1 Webchess 2023-01-18 N/A 8.8 HIGH
WebChess through 0.9.0 and 1.0.0.rc2 allows SQL injection: mainmenu.php, chess.php, and opponentspassword.php (txtFirstName, txtLastName).
CVE-2019-20896 1 Webchess Project 1 Webchess 2020-07-09 7.5 HIGH 9.8 CRITICAL
WebChess 1.0 allows SQL injection via the messageFrom, gameID, opponent, messageID, or to parameter.