VULHUB ™

It has been reported that ASP Chat suffers from an HTML injection vulnerability. The problem is said to occur due to insufficient input validation of user-supplied nickname values when logging in. As a result, an attacker may log into the chat program with a malicious nickname containing embedded scriptcode. All scriptcode will be interpreted by the browsers of other chat participants, within the context of the site hosting ASP Chat.

It has been reported that ASP Chat suffers from an HTML injection vulnerability. The problem is said to occur due to insufficient input validation of user-supplied nickname values when logging in. As a result, an attacker may log into the chat program with a malicious nickname containing embedded scriptcode. All scriptcode will be interpreted by the browsers of other chat participants, within the context of the site hosting ASP Chat.