CVE-2026-6160

Summary

A vulnerability was found in code-projects Simple ChatBox 1.0. Affected by this issue is the function SimpleChatbox_PHP of the file chatbox.sql of the component Endpoint. Performing a manipulation results in file and directory information exposure. It is possible to initiate the attack remotely. The exploit has been made public and could be used.

Affected Software

VendorProductVersion RangeStatus
code-projectsSimple ChatBox1.0affected

Weaknesses

  • CWE-538: File and Directory Information Exposure
  • CWE-200: Information Disclosure

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: partial

References