29 matches found
EUVD-2009-1613
Malware in sbrugna...
EUVD-2010-2066
Malware in sbrugna...
EUVD-2014-4440
Malware in sbrugna...
CVE-2010-2046
Multiple cross-site scripting XSS vulnerabilities in the ActiveHelper LiveHelp comactivehelperlivehelp component 2.0.3 for Joomla! allow remote attackers to inject arbitrary web script or HTML via 1 the DOMAINID parameter to server/cookies.php or 2 the SERVER parameter to server/index.php...
ActiveHelper LiveHelp Server 3.1.0 - server/offline.php Multiple Parameter XSS
The activehelper-livehelp WordPress plugin was affected by a server/offline.php Multiple Parameter XSS security vulnerability...
ActiveHelper LiveHelp Server 3.2.2 - server/import/javascript.php Multiple Vector SQL Injection
The activehelper-livehelp WordPress plugin was affected by a server/import/javascript.php Multiple Vector SQL Injection security vulnerability...
ActiveHelper LiveHelp Server 3.2.2 - server/frames.php DEPARTMENT Parameter SQL Injection
The activehelper-livehelp WordPress plugin was affected by a server/frames.php DEPARTMENT Parameter SQL Injection security vulnerability...
ActiveHelper LiveHelp Server 3.2.2 - server/import/tracker.php Multiple Parameter SQL Injection
The activehelper-livehelp WordPress plugin was affected by a server/import/tracker.php Multiple Parameter SQL Injection security vulnerability...
ActiveHelper LiveHelp Server 3.2.2 - server/import/status.php Multiple Parameter SQL Injection
The activehelper-livehelp WordPress plugin was affected by a server/import/status.php Multiple Parameter SQL Injection security vulnerability...
WordPress ActiveHelper LiveHelp Live Chat Plugin Cross Site Scripting Vulnerability
WordPress ActiveHelper LiveHelp Live Chat Plugin is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in server/offline.php in the ActiveHelper LiveHelp Live Chat plugin 3.1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 MESSAGE, 2 EMAIL, or 3 NAME parameter...
CVE-2014-4513
ActiveHelper LiveHelp Server 3.1.0 (WordPress plugin) contains multiple XSS flaws in server/offline.php, exploitable via the MESSAGE, EMAIL, or NAME parameters. Root cause: reflected/stored input not properly sanitized, allowing arbitrary script/HTML injection. Impact: potential theft or manipula...
CVE-2014-4513
Multiple cross-site scripting XSS vulnerabilities in server/offline.php in the ActiveHelper LiveHelp Live Chat plugin 3.1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 MESSAGE, 2 EMAIL, or 3 NAME parameter...
WordPress ActiveHelper LiveHelp Plugin <= 3.1.0 - Multiple XSS
Because of these multiple vulnerabilities, the attackers can inject arbitrary web script or HTML via the 3 parameters: "MESSAGE", "EMAIL", or "NAME". Solution Update the plugin...
ActiveHelper LiveHelp, 3.2.0, sqli
ActiveHelper LiveHelp, 3.2.0, SQL Injection We already updated the LiveHelp Server to the version 3.3.0 that include a security patch that fixes the reported issue. We also include a few improvements on other units. Update Notice URL...
StarDevelop LiveHelp 2.0 - index.php Local File Inclusion
StarDevelop LiveHelp 2.0 - index.php Local File Inclusion source: https://www.securityfocus.com/bid/49650/info StarDevelop LiveHelp is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this vulnerability to obtain...
CVE-2010-2046
Multiple cross-site scripting XSS vulnerabilities in the ActiveHelper LiveHelp comactivehelperlivehelp component 2.0.3 for Joomla! allow remote attackers to inject arbitrary web script or HTML via 1 the DOMAINID parameter to server/cookies.php or 2 the SERVER parameter to server/index.php...
CVE-2010-2046
ActiveHelper LiveHelp for Joomla! (com_activehelper_livehelp) version 2.0.3 is affected by multiple XSS vulnerabilities. The issue allows remote attackers to inject arbitrary JavaScript/HTML via (1) the DOMAINID parameter to server/cookies.php or (2) the SERVER parameter to server/index.php. Root...
Joomla ActiveHelper LiveHelp Component "DOMAINID" Cross-Site Scripting Vulnerability
No description provided by source. Exploit Title: Joomla Component ActiveHelper LiveHelp XSS Vulnerabilities Date: 18.05.2010 Author: Valentin Category: webapps/0day Version: 2.0.3 Tested on: CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General...
Joomla ActiveHelper LiveHelp 2.0.3 Cross Site Scripting
Exploit Title: Joomla Component ActiveHelper LiveHelp XSS Vulnerabilities Date: 18.05.2010 Author: Valentin Category: webapps/0day Version: 2.0.3 Tested on: CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information Advisory/Exploit Title =...