418 matches found
CVE-2022-1530
Cross-site Scripting XSS in GitHub repository livehelperchat/livehelperchat prior to 3.99v. The attacker can execute malicious JavaScript on the application...
CVE-2022-1530
Cross-site Scripting XSS in GitHub repository livehelperchat/livehelperchat prior to 3.99v. The attacker can execute malicious JavaScript on the application...
Cross site scripting
Cross-site Scripting XSS in GitHub repository livehelperchat/livehelperchat prior to 3.99v. The attacker can execute malicious JavaScript on the application...
CVE-2022-1530
CVE-2022-1530 corresponds to a Cross-site Scripting (XSS) vulnerability in livehelperchat/livehelperchat (GitHub repository) prior to version 3.99. The issue allows an attacker to execute malicious JavaScript within the application. Available sources indicate the vulnerability affects versions be...
CVE-2022-1530 Cross-site Scripting (XSS) in livehelperchat/livehelperchat
Cross-site Scripting XSS in GitHub repository livehelperchat/livehelperchat prior to 3.99v. The attacker can execute malicious JavaScript on the application...
CVE-2022-1530 Cross-site Scripting (XSS) in livehelperchat/livehelperchat
Cross-site Scripting XSS in GitHub repository livehelperchat/livehelperchat prior to 3.99v. The attacker can execute malicious JavaScript on the application...
PT-2022-13933 · Unknown · Livehelperchat
Name of the Vulnerable Software and Affected Versions: livehelperchat/livehelperchat versions prior to 3.99v Description: The issue is related to Cross-site Scripting XSS, which allows an attacker to execute malicious JavaScript on the application. This can potentially lead to unauthorized action...
livehelperchat 跨站脚本漏洞
livehelperchat is an open source application that provides free live support on a website through live helper chat. A cross-site scripting XSS vulnerability exists in livehelperchat versions prior to 3.99, which can be exploited by an attacker to execute malicious JS scripts on the application...
An unspecified vulnerability exists in livehelperchat (CNVD-2022-55057)
livehelperchat is available via Live Assistant Chat, which provides free live support on the website. livehelperchat versions prior to 3.97 have a security vulnerability that could be exploited by attackers to generate a fake password reset link to steal a password reset token, which could lead t...
Host Header Injection
remdex/livehelperchat is vulnerable to host header injection. The library does not properly validate the URL for password reset which allows a malicious attacker to generate a fake password link and take over the user account...
livehelperchat Cross-Site Scripting Vulnerability (CNVD-2022-71405)
livehelperchat is available via livehelperchat, which provides free live support on the website. livehelperchat versions prior to 3.97 are vulnerable to a cross-site scripting vulnerability that originates in the GitHub repository livehelperchat/livehelperchat in livehelperchat An XSS vulnerabili...
CVE-2022-0935
Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97...
CVE-2022-0935
Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97...
Design/Logic Flaw
Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97...
CVE-2022-0935
CVE-2022-0935 affects livehelperchat/livehelperchat prior to 3.97 and is caused by Host Header injection in the password reset flow. Multiple sources (NVD, Red Hat, OSV, CNVD, PT-Security, CNVD) describe an attacker abusing header handling to forge or manipulate password reset tokens, potentially...
CVE-2022-0935 Host Header injection in password Reset in livehelperchat/livehelperchat
Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97...
CVE-2022-0935 Host Header injection in password Reset in livehelperchat/livehelperchat
Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97...
livehelperchat 安全漏洞
livehelperchat is available via Live Assistant Chat, which provides free live support on the website. livehelperchat versions prior to 3.97 have a security vulnerability that could be exploited by attackers to generate a fake password reset link to steal a password reset token, which could lead t...
PT-2022-13536 · Unknown · Livehelperchat
Name of the Vulnerable Software and Affected Versions: livehelperchat/livehelperchat versions prior to 3.97 Description: The issue concerns a Host Header injection in the password reset functionality. This problem is associated with the GitHub repository livehelperchat/livehelperchat...
CVE-2022-1234
XSS in livehelperchat in GitHub repository livehelperchat/livehelperchat prior to 3.97. This vulnerability has the potential to deface websites, result in compromised user accounts, and can run malicious code on web pages, which can lead to a compromise of the user’s device...