Vulnerabilities in phpMyChat before 0.14.4 allow local and possibly remote attackers to gain privileges by specifying an alternate library file in the L (localization) parameter.Referenceshttp://www.phpheaven.net/projects/phpMyChat/changes.php3
