connection.php in FlashChat 5.0.8 allows remote attackers to bypass the role filter mechanism and gain administrative privileges by setting the s parameter to 7.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Flashchat |
Tufat |
5.0.8 |
5.0.8 |
References