Launchpad.net

CVE 2016-4851

Cross-site scripting (XSS) vulnerability in Let's PHP! simple chat before 2016-08-15 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

See the CVE page on Mitre.org for more details.

References