418 matches found
Cross-Site Scripting (XSS)
remdex/livehelperchat is vulnerable to cross-site scripting. The vulnerability exists due to lack of sanitization of user input in user profile setting which allows an attacker to inject malicious scripts during Web Page Generation...
Cross-Site Request Forgery (CSRF)
remdex/livehelperchat is vulnerable to Cross-Site Request Forgery CSRF. A remote attacker is able to trick admin user to clear the system cache which allows an attacker to execute the lead action without CSRF token check...
CVE-2021-4131
livehelperchat is vulnerable to Cross-Site Request Forgery CSRF...
CVE-2021-4131
livehelperchat is vulnerable to Cross-Site Request Forgery CSRF...
CVE-2021-4131
livehelperchat is vulnerable to Cross-Site Request Forgery CSRF...
Cross site request forgery (csrf)
livehelperchat is vulnerable to Cross-Site Request Forgery CSRF...
CVE-2021-4131 Cross-Site Request Forgery (CSRF) in livehelperchat/livehelperchat
livehelperchat is vulnerable to Cross-Site Request Forgery CSRF...
CVE-2021-4131
CVE-2021-4131 affects livehelperchat and describes a Cross-Site Request Forgery (CSRF) vulnerability. The incident is corroborated by multiple sources in the connected documents, which list CSRF as the vulnerability class for livehelperchat and provide CVSS metrics: CVSS v3.1 base score 8.8 (vect...
PT-2021-23264 · Unknown · Livehelperchat
Name of the Vulnerable Software and Affected Versions: livehelperchat affected versions not specified Description: The issue is related to Cross-Site Request Forgery CSRF, which is a type of attack that tricks a user into performing unintended actions on a web application. No information is...
livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
livehelperchat is vulnerable to Cross-Site Request Forgery CSRF...
GHSA-RPG7-Q4CV-P466 livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
livehelperchat is vulnerable to Cross-Site Request Forgery CSRF...
CVE-2021-4132
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...
CVE-2021-4132
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...
CVE-2021-4132
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...
Cross site scripting
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...
CVE-2021-4132
CVE-2021-4132 affects the LiveHelperChat project. The exposure is a Cross-site Scripting (XSS) flaw described as Improper Neutralization of Input During Web Page Generation, enabling stored XSS in the application. The most concrete details come from multiple connected sources: stored XSS in user ...
CVE-2021-4132 Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...
Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat
Description livehelperchat is vulnerable to stored XSS in users profile setting where username, password, repeat password, nickname, name, surname, job title fields are vulnerable to stored XSS. Proof of Concept this.constructor.constructor'alert"foo"' Enter the given payload in the above-mention...
livehelperchat Cross-Site Request Forgery Vulnerability (CNVD-2022-06911)
livehelperchat is available via Live Helper Chat, which provides free live support on the website. livehelperchat suffers from a cross-site request forgery vulnerability, which stems from the fact that livehelperchat is vulnerable to cross-site request forgery CSRF attacks. No details of the...
livehelperchat 跨站脚本漏洞
livehelperchat is available through live helper chat and can be used to provide live support on the website for free. A cross-site scripting vulnerability exists in livehelperchat that stems from livehelperchat's susceptibility to input mismatches during web page generation "cross-site scripting"...