Vulnerabilities (CVE)

Filtered by vendor 53kf Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-0247 1 53kf 1 Web Im 2009 2024-11-21 4.3 MEDIUM N/A
The server for 53KF Web IM 2009 Home, Professional, and Enterprise editions relies on client-side protection mechanisms against cross-site scripting (XSS), which allows remote attackers to conduct XSS attacks by using a modified client to send a crafted IM message, related to the msg variable.
CVE-2020-28119 1 53kf 1 53kf 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
Cross site scripting vulnerability in 53KF < 2.0.0.2 that allows for arbitrary code to be executed via crafted HTML statement inserted into chat window.