Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-55057
HistoryApr 11, 2022 - 12:00 a.m.

An unspecified vulnerability exists in livehelperchat (CNVD-2022-55057)

2022-04-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
livehelperchat
security vulnerability
account takeover
password reset

EPSS

0.002

Percentile

56.5%

JSON

livehelperchat is available via Live Assistant Chat, which provides free live support on the website. livehelperchat versions prior to 3.97 have a security vulnerability that could be exploited by attackers to generate a fake password reset link to steal a password reset token, which could lead to an account takeover.

Related

cvelist 1
prion 1
huntr 1
osv 2
cve 1
veracode 1
nvd 1
cvelist
cvelist
CVE-2022-0935 Host Header injection in password Reset in livehelperchat/livehelperchat
2022-04-07 18:21:42
prion
prion
Design/Logic Flaw
2022-04-07 19:15:00
huntr
huntr
Host Header injection in password Reset
2022-03-11 16:05:20
osv
osv
BIT-livehelperchat-2022-0935
2024-03-06 10:56:15
CVE-2022-0935
2022-04-07 19:15:08
cve
cve
CVE-2022-0935
2022-04-07 19:15:08
veracode
veracode
Host Header Injection
2022-04-08 07:54:44
nvd
nvd
CVE-2022-0935
2022-04-07 19:15:08

EPSS

0.002

Percentile

56.5%

JSON
Related for CNVD-2022-55057
cvelist1prion1huntr1osv2cve1veracode1nvd1