Vulnerabilities
Vulnerable Software
A51dev:  Security Vulnerabilities
functions/html_to_text.php in the Chat module before 1.5.2 for activeCollab allows remote authenticated users to execute arbitrary PHP code via the message[message_text] parameter to chat/add_messag, which is not properly handled when executing the preg_replace function with the eval switch.
CVSS Score
6.5
EPSS Score
0.899
Published
2013-05-23


Contact Us

Shodan ® - All rights reserved