pcpin CVE Vulnerabilities & CVE List (3)

Products (CPE): — CVEs: 3

pcpin vulnerability overview

Aggregates CVE and security vulnerability intelligence across all pcpin-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Common weakness patterns include vendor risk sql injection and vendor risk cross-site scripting, with potential vendor impact session compromise and vendor impact data exposure across vendor surface production workloads use cases.

Vulnerability distribution trend (last 24 months)

Showing 13 of 3 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2008-2485 Cross-site scripting (XSS) vulnerability in the URL redirection script (inc/url_redirection.inc.php) in PCPIN Chat before 6.11 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. [email protected] 4.3 1.06% 2008-05-28 2026-04-23
CVE-2006-1963 Directory traversal vulnerability in main.php in PCPIN Chat 5.0.4 and earlier allows remote authenticated users to include and execute arbitrary PHP code via a ".." (dot dot) in a language cookie, as demonstrated by uploading then accessing a smiliefile image that actually contains PHP code. [email protected] 5.5 1.57% 2006-04-21 2026-04-16
CVE-2006-1962 SQL injection vulnerability in PCPIN Chat 5.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the username field (login parameter) to main.php. [email protected] 7.5 1.51% 2006-04-21 2026-04-16
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence