CyberSec.Space Logo
Back to CVE Browser

CVE-2007-0954

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1490%
EPSS Percentile14.18th
PublishedFeb 15, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

MOHA Chat 0.1b7 and earlier does not require authentication for use of the plug in API, which has unknown impact and attack vectors.

Affected Platforms (CPE)

πŸ“¦
Mohachat

Moha Chat

<= 0.1b7

References & Advisories

πŸ”— http://mohachat.sourceforge.net/download/release_notes/#0.1b8
πŸ”— http://osvdb.org/31934
πŸ”— http://www.vupen.com/english/advisories/2007/0599
πŸ”— http://mohachat.sourceforge.net/download/release_notes/#0.1b8
πŸ”— http://osvdb.org/31934
πŸ”— http://www.vupen.com/english/advisories/2007/0599

Related Vulnerabilities

CVE-2007-158710.0

templates/config/mail.tpl in Tim Soderstrom StatsDawg 0.92 allows remote attackers to execute arbitrary programs by specifying the...

CVE-2007-182310.0

T-Mobile voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailboxes, by spoofing Calling N...

CVE-2007-182210.0

Alcatel-Lucent Lucent Technologies voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailbo...

CVE-2007-005710.0

Cisco Clean Access (CCA) 3.6.x through 3.6.4.2 and 4.0.x through 4.0.3.2 does not properly configure or allow modification of a sh...