176 matches found
CVE-2019-12939
LiveZilla Server before 8.0.1.1 is vulnerable to SQL Injection in server.php via the pextrse parameter...
CVE-2019-12940
LiveZilla Server before 8.0.1.1 is vulnerable to Denial Of Service memory consumption in knowledgebase.php via a large integer value of the depth parameter...
CVE-2019-12939
LiveZilla Server before 8.0.1.1 is vulnerable to SQL Injection in server.php via the pextrse parameter...
CVE-2019-12940
LiveZilla Server before 8.0.1.1 is vulnerable to Denial Of Service memory consumption in knowledgebase.php via a large integer value of the depth parameter...
Sql injection
LiveZilla Server before 8.0.1.1 is vulnerable to SQL Injection in server.php via the pextrse parameter...
Design/Logic Flaw
LiveZilla Server before 8.0.1.1 is vulnerable to Denial Of Service memory consumption in knowledgebase.php via a large integer value of the depth parameter...
CVE-2019-12940
LiveZilla Server before 8.0.1.1 is vulnerable to Denial Of Service memory consumption in knowledgebase.php via a large integer value of the depth parameter...
CVE-2019-12940
LiveZilla Server is vulnerable prior to 8.0.1.1 to a Denial of Service via memory consumption in knowledgebase.php caused by a large integer value for the depth parameter. The issue is documented across multiple sources (e.g., CVE-2019-12940 entries and Red Hat advisory) and affects LiveZilla Ser...
CVE-2019-12939
LiveZilla Server is affected by CVE-2019-12939: a SQL Injection in server.php via the p_ext_rse parameter, impacting LiveZilla Server builds before 8.0.1.1. Public records corroborate an exploitable path leading to partial confidentiality, integrity, and availability impacts (NVD cvss2 base 7.5; ...
CVE-2019-12939
LiveZilla Server before 8.0.1.1 is vulnerable to SQL Injection in server.php via the pextrse parameter...
LiveZilla Live Chat Cross-Site Scripting Vulnerability
LiveZilla Live Chat is a free online customer service system from the German company LiveZilla. The system provides real-time monitoring of visitors, offline messages, GeoTracking map tracking, access statistics, online chat and other features. A cross-site scripting vulnerability exists in the...
CVE-2018-10810
chat/mobile/index.php in LiveZilla Live Chat 7.0.9.5 and prior is affected by Cross-Site Scripting via the Accept-Language HTTP header...
CVE-2018-10810
chat/mobile/index.php in LiveZilla Live Chat 7.0.9.5 and prior is affected by Cross-Site Scripting via the Accept-Language HTTP header...
Cross site scripting
chat/mobile/index.php in LiveZilla Live Chat 7.0.9.5 and prior is affected by Cross-Site Scripting via the Accept-Language HTTP header...
CVE-2018-10810
chat/mobile/index.php in LiveZilla Live Chat 7.0.9.5 and prior is affected by Cross-Site Scripting via the Accept-Language HTTP header...
CVE-2018-10810
LiveZilla Live Chat 7.0.9.5 and earlier versions are affected by a Cross-Site Scripting (XSS) vulnerability in chat/mobile/index.php, exploitable via the Accept-Language HTTP header. The vulnerability allows an attacker to inject and execute arbitrary script in a user’s browser, as described in m...
LiveZilla 'knowledgebase.php' Cross Site Scripting Vulnerability
LiveZilla is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Cross site scripting
Cross-site scripting XSS vulnerability in knowledgebase.php in LiveZilla before 7.0.8.9 allows remote attackers to inject arbitrary web script or HTML via the search-for parameter...
CVE-2017-15869
Cross-site scripting XSS vulnerability in knowledgebase.php in LiveZilla before 7.0.8.9 allows remote attackers to inject arbitrary web script or HTML via the search-for parameter...
CVE-2017-15869
Cross-site scripting XSS vulnerability in knowledgebase.php in LiveZilla before 7.0.8.9 allows remote attackers to inject arbitrary web script or HTML via the search-for parameter...