Aggregates CVE and security vulnerability intelligence across all lionmax_software-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk path handling, vendor risk buffer overflow, and vendor risk denial of service and related problems; some flaws may lead to vendor impact application crash.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2005-0522 | Chat Anywhere 2.72a stores sensitive information such as passwords in plaintext in the .INI file for a chatroom, which allows local users to gain privileges. | [email protected] | 4.6 | 0.16% | 2005-05-02 | 2026-04-16 |
| CVE-2004-2724 | LionMax Software Chat Anywhere 2.72a allows remote attackers to cause a denial of service (server crash and client CPU consumption) via a username beginning with percent (%) followed by a null character. | [email protected] | 7.1 | 0.95% | 2004-12-31 | 2026-04-16 |
| CVE-2004-0741 | LionMax Software WWW File Share Pro 2.60 allows remote attackers to cause a denial of service (crash or hang) via a long URL, possibly triggering a buffer overflow. | [email protected] | 5.0 | 0.71% | 2004-07-27 | 2026-04-16 |
| CVE-2004-0061 | WWW File Share Pro 2.42 and earlier allows remote attackers to bypass directory access restrictions via (1) a URL with a trailing . (dot), or (2) a URI with a leading slash or backslash character. | [email protected] | 7.5 | 0.31% | 2004-02-17 | 2026-04-16 |
| CVE-2004-0060 | WWW File Share Pro 2.42 and earlier allows remote attackers to cause a denial of service (crash) via a large POST request. | [email protected] | 5.0 | 0.66% | 2004-02-17 | 2026-04-16 |
| CVE-2004-0059 | Directory traversal vulnerability in upload capability of WWW File Share Pro 2.42 and earlier allows remote attackers to overwrite arbitrary files via .. (dot dot) sequences in the filename parameter of a Content-Disposition: header. | [email protected] | 5.0 | 0.58% | 2004-02-17 | 2026-04-16 |