livehelperchat 安全漏洞

livehelperchat is a live support available for free on the website through Live Helper Chat. A security vulnerability exists in livehelperchat versions prior to 3.96 that stems from a loose comparison leading to IDOR on multiple endpoints. an attacker can bypass multiple checks to access other...

PT-2022-13704 · Unknown · Livehelperchat

Name of the Vulnerable Software and Affected Versions: livehelperchat/livehelperchat versions prior to 3.96 Description: The issue is related to a Server-Side Request Forgery SSRF in the index.php/cobrowse/proxycss/ endpoint of the livehelperchat/livehelperchat GitHub repository. This allows for...

livehelperchat Cross-Site Scripting Vulnerability (CNVD-2022-18521)

livehelperchat is available through Live Helper Chat, which provides free live support on the website. livehelperchat suffers from a cross-site scripting vulnerability that stems from the lack of proper validation of client-side data by the WEB application. An attacker could exploit the...

Cross-site Scripting (XSS)

remdex/livehelperchat is vulnerable to cross-site scripting. The library has stored XSS at customercompanynameValueParam field in the Chat configuration page allowing an attacker to inject and execute malicious javascript on user's browser, resulting in compromised user accounts...

livehelperchat Cross-Site Scripting Vulnerability (CNVD-2022-13080)

livehelperchat is available through Live Helper Chat, which provides free live support on the website. livehelperchat 3.93v previously had a cross-site scripting vulnerability that stemmed from the lack of proper validation of client-side data by the WEB application, which could be exploited by a...

Unspecified vulnerability in livehelperchat (CNVD-2022-13348)

livehelperchat is available through live helper chat and can be used to provide live support on the website for free. A security vulnerability exists in versions prior to livehelperchat 3.92v that stems from a user control key authorization bypass. No details of the vulnerability are provided at...

GHSA-H2FJ-77WH-FH5W Cross-site Scripting in livehelperchat

Cross-site Scripting XSS - Stored in Packagist remdex/livehelperchat prior to 3.93v...

Cross-site Scripting in livehelperchat

Cross-site Scripting XSS - Stored in Packagist remdex/livehelperchat prior to 3.93v...

CVE-2022-0612

Cross-site Scripting XSS - Stored in Packagist remdex/livehelperchat prior to 3.93v...

CVE-2022-0612

Cross-site Scripting XSS - Stored in Packagist remdex/livehelperchat prior to 3.93v...

Cross site scripting

Cross-site Scripting XSS - Stored in Packagist remdex/livehelperchat prior to 3.93v...

CVE-2022-0612

CVE-2022-0612 describes a stored Cross-site Scripting (XSS) in the Packagist package remdex/livehelperchat, prior to version 3.93. The issue arises from insufficient validation of client-side data by the web application, enabling injection of script via stored payloads. Affected component is the ...

CVE-2022-0612 Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat

Cross-site Scripting XSS - Stored in Packagist remdex/livehelperchat prior to 3.93v...

CVE-2022-0612 Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat

Cross-site Scripting XSS - Stored in Packagist remdex/livehelperchat prior to 3.93v...

PT-2022-13298 · Remdex · Livehelperchat

Name of the Vulnerable Software and Affected Versions: remdex/livehelperchat versions prior to 3.93v Description: The issue is related to Cross-site Scripting XSS - Stored. This means an attacker can inject malicious scripts into the application, which are then stored and executed by the...

Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat

Description LiveHelperChat is vulnerable to Stored XSS at the Company name field customercompanynameValueParam parameter in the Copyright settings tab of the Chat configuration page. Payload constructor.constructor'alert1' Steps to reproduce 1.Login then go to Chat configuration page...

livehelperchat cross-site scripting vulnerability (CNVD-2022-09132)

livehelperchat is available through live helper chat and can be used to provide live support on the website for free. A cross-site scripting vulnerability exists in livehelperchat, which stems from a cross-site scripting vulnerability in Packagist remdex/livehelperchat. No detailed vulnerability...

GHSA-57QF-82HH-2HMC Cross-site Scripting in LiveHelperChat

LiveHelperChat prior to version 3.93 is vulnerable to cross-site scripting...

Cross-site Scripting in LiveHelperChat

LiveHelperChat prior to version 3.93 is vulnerable to cross-site scripting...

CVE-2022-0502

Cross-site Scripting XSS - Stored in Packagist remdex/livehelperchat prior to 3.93v...