Livehelperchat Security Vulnerabilities

CVE-2022-1234

XSS in livehelperchat in GitHub repository livehelperchat/livehelperchat prior to 3.97. This vulnerability has the potential to deface websites, result in compromised user accounts, and can run malicious code on web pages, which can lead to a compromise of the user’s...

CVE-2022-1530

Cross-site Scripting (XSS) in GitHub repository livehelperchat/livehelperchat prior to 3.99v. The attacker can execute malicious JavaScript on the...

CVE-2022-0935

Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to...

CVE-2022-1235

Weak secrethash can be brute-forced in GitHub repository livehelperchat/livehelperchat prior to...

CVE-2022-1213

SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/livehelperchat prior to 3.67v. An attacker could make the application perform arbitrary requests, bypass...

CVE-2022-1176

Loose comparison causes IDOR on multiple endpoints in GitHub repository livehelperchat/livehelperchat prior to...

CVE-2022-1191

SSRF on index.php/cobrowse/proxycss/ in GitHub repository livehelperchat/livehelperchat prior to...

CVE-2022-0612

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to...

CVE-2022-0502

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to...

CVE-2022-0395

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to...

CVE-2022-0394

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to...

CVE-2022-0370

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to...

CVE-2022-0387

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to...

CVE-2022-0374

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to...

CVE-2022-0375

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to...

CVE-2022-0266

Authorization Bypass Through User-Controlled Key in Packagist remdex/livehelperchat prior to...

CVE-2022-0245

Cross-Site Request Forgery (CSRF) in GitHub repository livehelperchat/livehelperchat prior to...

CVE-2022-0253

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site...

CVE-2022-0226

livehelperchat is vulnerable to Cross-Site Request Forgery...

CVE-2022-0231

livehelperchat is vulnerable to Cross-Site Request Forgery...

CVE-2022-0083

livehelperchat is vulnerable to Generation of Error Message Containing Sensitive...

CVE-2021-4176

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site...

CVE-2021-4175

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site...

CVE-2021-4179

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site...

CVE-2021-4177

livehelperchat is vulnerable to Generation of Error Message Containing Sensitive...

CVE-2021-4169

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site...

CVE-2021-4131

livehelperchat is vulnerable to Cross-Site Request Forgery...

CVE-2021-4132

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site...

CVE-2021-4123

livehelperchat is vulnerable to Cross-Site Request Forgery...

CVE-2021-4050

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site...

CVE-2021-4049

livehelperchat is vulnerable to Cross-Site Request Forgery...

CVE-2020-26134

Live Helper Chat before 3.44v allows stored XSS in chat messages with an operator via...

CVE-2020-26135

Live Helper Chat before 3.44v allows reflected XSS via the setsettingajax...