418 matches found
CVE-2022-0502
Cross-site Scripting XSS - Stored in Packagist remdex/livehelperchat prior to 3.93v...
Cross site scripting
Cross-site Scripting XSS - Stored in Packagist remdex/livehelperchat prior to 3.93v...
CVE-2022-0502 Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat
Cross-site Scripting XSS - Stored in Packagist remdex/livehelperchat prior to 3.93v...
CVE-2022-0502
CVE-2022-0502 affects the LiveHelperChat package remdex/livehelperchat. Multiple connected sources confirm a stored Cross-site Scripting (XSS) vulnerability in this package prior to version 3.93. Root cause identified as XSS in the livehelperchat package stored in Packagist. Impact is user-visibl...
CVE-2022-0502 Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat
Cross-site Scripting XSS - Stored in Packagist remdex/livehelperchat prior to 3.93v...
livehelperchat 跨站脚本漏洞
livehelperchat is available through live helper chat and can be used to provide live support on the website for free. A cross-site scripting vulnerability exists in livehelperchat, which stems from a cross-site scripting vulnerability in Packagist remdex/livehelperchat. No detailed vulnerability...
Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat
Description LiveHelperChat is vulnerable to Stored XSS at the Message field in the Personal canned message tab of the User account page. Payload constructor.constructor'alert1' Steps to reproduce 1.Login then go to User account page https://demo.livehelperchat.com/siteadmin/user/account 2.Switch ...
Cross-site Scripting in LiveHelperChat
LiveHelperChat remdex/livehelperchat in Packagist has a stored Cross-site Scripting XSS vulnerability prior to version 3.93...
GHSA-VWXP-9QMF-W299 Cross-site Scripting in LiveHelperChat
LiveHelperChat remdex/livehelperchat in Packagist has a stored Cross-site Scripting XSS vulnerability prior to version 3.93...
Cross-site Scripting (XSS)
remdex/livehelperchat is vulnerable to stored cross-site scripting. The vulnerability exists due to improper sanitization of the name field in embedcode.tpl.php which allows an attacker to steal user cookies and execute arbitrary scripts...
Cross-site Scripting (XSS)
remdex/livehelperchat is vulnerable to cross-site scripting XSS attacks. Name and Surname fields in the user account page are not properly escaped allowing an authenticated attacker to insert arbitrary javascript to victim's browser...
Cross-site Scripting in LiveHelperChat
LiveHelperChat prior to version 3.93 contains a cross-site scripting vulnerability...
GHSA-54QQ-9CHJ-RXHV Cross-site Scripting in LiveHelperChat
LiveHelperChat prior to version 3.93 contains a cross-site scripting vulnerability...
Cross-site Scripting in livehelperchat
Stored XSS is found in SettingsLive help configurationDepartments-Departments groups-edit When a user creates a new webhook under the NAME field and puts a payload constructor.constructor'alert1', the input gets stored, at user edit groupname , the payload gets executed...
GHSA-8WCC-F2VQ-H4GX Cross-site Scripting in livehelperchat
Stored XSS is found in SettingsLive help configurationPersonal Themestatic content. Under the NAME field put a payload constructor.constructor'alert1' while creating content, and you will see that the input gets stored, and every time the user visits, the payload gets executed...
Cross-site Scripting in livehelperchat
Stored XSS is found in SettingsLive help configurationPersonal Themestatic content. Under the NAME field put a payload constructor.constructor'alert1' while creating content, and you will see that the input gets stored, and every time the user visits, the payload gets executed...
GHSA-59QH-G7M4-J9M9 Cross-site Scripting in livehelperchat
Stored XSS attacks exist in new the form creation flow. New forms can be given a title which will render javascript...
Cross-site Scripting in livehelperchat
Stored XSS attacks exist in new the form creation flow. New forms can be given a title which will render javascript...
GHSA-X3G3-JH26-76CF Cross-site Scripting in livehelperchat
LiveHelperChat is vulnerable to Stored XSS at the Name field in the Admin themes of System configuration...
Cross-site Scripting in livehelperchat
LiveHelperChat is vulnerable to Stored XSS at the Name field in the Admin themes of System configuration...