Authorization Bypass Through User-Controlled Key in LiveHelperChat

Authorization Bypass Through User-Controlled Key in Packagist remdex/livehelperchat prior to 3.92v...

livehelperchat cross-site request forgery vulnerability (CNVD-2022-08284)

livehelperchat is available through live helper chat and can be used to provide live support on the website for free. A cross-site request forgery vulnerability previously existed in livehelperchat 2.0, which stemmed from a WEB application that did not adequately validate that a request was comin...

Cross-Site Request Forgery (CSRF)

remdex/livehelperchat is vulnerable to cross-site request forgery. The library does not properly validate the CSRF tokens in CannedMessage requests, allowing an attacker to create arbitrary canned messages, modify notification settings and group chat options...

CVE-2022-0266

Authorization Bypass Through User-Controlled Key in Packagist remdex/livehelperchat prior to 3.92v...

Authorization

Authorization Bypass Through User-Controlled Key in Packagist remdex/livehelperchat prior to 3.92v...

CVE-2022-0266 Authorization Bypass Through User-Controlled Key in livehelperchat/livehelperchat

Authorization Bypass Through User-Controlled Key in Packagist remdex/livehelperchat prior to 3.92v...

CVE-2022-0266 Authorization Bypass Through User-Controlled Key in livehelperchat/livehelperchat

Authorization Bypass Through User-Controlled Key in Packagist remdex/livehelperchat prior to 3.92v...

CVE-2022-0266

CVE-2022-0266 affects livehelperchat (Packagist remdex/livehelperchat) prior to version 3.92. The vulnerability is described as an authorization bypass via a user-controlled key. Multiple connected sources (OSV, CNVD/CNNVD, NVD, CVE lists) consistently reference the same issue and suggest upgradi...

livehelperchat 安全漏洞

livehelperchat is available through live helper chat and can be used to provide live support on the website for free. A security vulnerability exists in versions prior to livehelperchat 3.92v that stems from a user control key authorization bypass. No details of the vulnerability are provided at...

livehelperchat Cross-Site Scripting Vulnerability (CNVD-2022-08229)

livehelperchat is available via Live Helper Chat, which provides free live support on the website. livehelperchat suffers from a cross-site scripting vulnerability that stems from livehelperchat being vulnerable to incorrect neutralization during page generation. No detailed vulnerability details...

PT-2022-13081 · Remdex · Livehelperchat

Name of the Vulnerable Software and Affected Versions: remdex/livehelperchat versions prior to 3.92v Description: The issue is related to an authorization bypass through a user-controlled key. This allows unauthorized access, potentially leading to security breaches. The estimated number of...

CVE-2022-0245

Cross-Site Request Forgery CSRF in GitHub repository livehelperchat/livehelperchat prior to 2.0...

CVE-2022-0245

Cross-Site Request Forgery CSRF in GitHub repository livehelperchat/livehelperchat prior to 2.0...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF in GitHub repository livehelperchat/livehelperchat prior to 2.0...

CVE-2022-0245 Cross-Site Request Forgery (CSRF) in livehelperchat/livehelperchat

Cross-Site Request Forgery CSRF in GitHub repository livehelperchat/livehelperchat prior to 2.0...

CVE-2022-0245 Cross-Site Request Forgery (CSRF) in livehelperchat/livehelperchat

Cross-Site Request Forgery CSRF in GitHub repository livehelperchat/livehelperchat prior to 2.0...

CVE-2022-0245

CVE-2022-0245 is a CSRF vulnerability in livehelperchat/livehelperchat prior to version 2.0. The issue arises from insufficient validation of request origin, allowing an attacker to induce unintended actions on behalf of authenticated users via the affected client. Documents consistently describe...

livehelperchat 跨站请求伪造漏洞

livehelperchat is available through live helper chat and can be used to provide live support on the website for free. A cross-site request forgery vulnerability previously existed in livehelperchat 2.0, which stemmed from a WEB application that did not adequately validate that a request was comin...

livehelperchat cross-site request forgery vulnerability (CNVD-2022-08207)

livehelperchat is available through live helper chat and can be used to provide live support on the website for free. A cross-site request forgery vulnerability exists in livehelperchat, which stems from a WEB application that does not adequately validate that a request is coming from a trusted...

CVE-2022-0253

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...