CVE-2019-25613

Published: Mar 22, 2026 Last Modified: Mar 22, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 8,7

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Confidentiality: N/A

Integrity: N/A

Availability: N/A

HIGH 7,5

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: none

Integrity: none

Availability: high

Description

AI Translation Available

Easy Chat Server 3.1 contains a denial of service vulnerability that allows remote attackers to crash the application by sending oversized data in the message parameter. Attackers can establish a session via the chat.ghp endpoint and then send a POST request to body2.ghp with an excessively large message parameter value to cause the service to crash.

940

Improper Verification of Source of a Communication Channel

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Access Control Other

Potential Impacts:

Gain Privileges Or Assume Identity Varies By Context Bypass Protection Mechanism

Applicable Platforms

Technologies: Mobile

View CWE Details

https://www.exploit-db.com/exploits/46806

https://www.exploit-db.com/exploits/46806

https://www.vulncheck.com/advisories/easy-chat-server-denia…

https://www.vulncheck.com/advisories/easy-chat-server-denial-of-service-via-mes…

http://www.echatserver.com

http://www.echatserver.com

http://www.echatserver.com/ecssetup.exe

http://www.echatserver.com/ecssetup.exe