Live Helper Chat@* Security Vulnerabilities and Issues — Live Helper Chat@* CVE List

Lucene search

LivehelperchatLive Helper Chat*

17 matches found

CVE•added 2022/03/31 9:15 a.m.•116 views

CVE-2022-1191

SSRF on index.php/cobrowse/proxycss/ in GitHub repository livehelperchat/livehelperchat prior to 3.96.

8.7CVSS7.7AI score0.00181EPSS

CVE•added 2022/02/16 6:15 a.m.•104 views

CVE-2022-0612

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

6.7CVSS5.2AI score0.00305EPSS

CVE•added 2022/04/05 4:15 a.m.•94 views

CVE-2022-1213

SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/livehelperchat prior to 3.67v. An attacker could make the application perform arbitrary requests, bypass CVE-2022-1191

8.1CVSS7.8AI score0.00181EPSS

CVE•added 2022/04/29 9:15 a.m.•91 views

CVE-2022-1530

Cross-site Scripting (XSS) in GitHub repository livehelperchat/livehelperchat prior to 3.99v. The attacker can execute malicious JavaScript on the application.

6.1CVSS5AI score0.00208EPSS

CVE•added 2022/04/05 7:15 a.m.•89 views

CVE-2022-1235

Weak secrethash can be brute-forced in GitHub repository livehelperchat/livehelperchat prior to 3.96.

8.2CVSS7.8AI score0.00091EPSS

CVE•added 2022/04/06 4:15 a.m.•88 views

CVE-2022-1234

XSS in livehelperchat in GitHub repository livehelperchat/livehelperchat prior to 3.97. This vulnerability has the potential to deface websites, result in compromised user accounts, and can run malicious code on web pages, which can lead to a compromise of the user’s device.

8.8CVSS6.4AI score0.00195EPSS

CVE•added 2022/03/31 10:15 a.m.•79 views

CVE-2022-1176

Loose comparison causes IDOR on multiple endpoints in GitHub repository livehelperchat/livehelperchat prior to 3.96.

7.5CVSS7.5AI score0.00274EPSS

CVE•added 2022/04/07 7:15 p.m.•69 views

CVE-2022-0935

Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97.

8.8CVSS9AI score0.00376EPSS

CVE•added 2022/01/26 10:15 a.m.•68 views

CVE-2022-0374

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

6.5CVSS5.3AI score0.00267EPSS

CVE•added 2022/01/26 10:15 a.m.•68 views

CVE-2022-0375

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

6.5CVSS4.9AI score0.00357EPSS

CVE•added 2022/01/14 7:15 p.m.•66 views

CVE-2022-0226

livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)

4.3CVSS4.5AI score0.00117EPSS

CVE•added 2022/01/28 11:15 a.m.•66 views

CVE-2022-0394

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

5.4CVSS5AI score0.00261EPSS

CVE•added 2022/01/04 7:15 a.m.•63 views

CVE-2022-0083

livehelperchat is vulnerable to Generation of Error Message Containing Sensitive Information

7.3CVSS5.4AI score0.0021EPSS

CVE•added 2022/01/28 10:15 p.m.•60 views

CVE-2022-0395

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

6.5CVSS5.3AI score0.00376EPSS

CVE•added 2022/01/19 6:15 a.m.•59 views

CVE-2022-0266

Authorization Bypass Through User-Controlled Key in Packagist remdex/livehelperchat prior to 3.92v.

6.6CVSS6.3AI score0.00303EPSS

CVE•added 2022/01/14 12:15 p.m.•57 views

CVE-2022-0231

livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)

6.5CVSS6AI score0.00106EPSS

CVE•added 2022/02/06 11:15 a.m.•56 views

CVE-2022-0502

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

6.5CVSS5.3AI score0.00356EPSS