Live Helper Chat Security Vulnerabilities and Issues — Live Helper Chat CVE List

Lucene search

LivehelperchatLive Helper Chat

19 matches found

CVE•added 2022/02/16 6:15 a.m.•108 views

CVE-2022-0612

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

6.7CVSS5.2AI score0.00322EPSS

CVE•added 2022/04/29 9:15 a.m.•93 views

CVE-2022-1530

Cross-site Scripting (XSS) in GitHub repository livehelperchat/livehelperchat prior to 3.99v. The attacker can execute malicious JavaScript on the application.

6.1CVSS5AI score0.00208EPSS

CVE•added 2022/01/26 10:15 a.m.•69 views

CVE-2022-0374

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

6.5CVSS5.3AI score0.00267EPSS

CVE•added 2022/01/26 10:15 a.m.•69 views

CVE-2022-0375

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

6.5CVSS4.9AI score0.00357EPSS

CVE•added 2020/10/02 9:15 a.m.•68 views

CVE-2020-26134

Live Helper Chat before 3.44v allows stored XSS in chat messages with an operator via BBCode.

6.1CVSS5.9AI score0.00396EPSS

CVE•added 2022/01/28 10:15 p.m.•61 views

CVE-2022-0395

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

6.5CVSS5.3AI score0.00376EPSS

CVE•added 2022/01/19 6:15 a.m.•60 views

CVE-2022-0266

Authorization Bypass Through User-Controlled Key in Packagist remdex/livehelperchat prior to 3.92v.

6.6CVSS6.3AI score0.00303EPSS

CVE•added 2022/01/14 12:15 p.m.•58 views

CVE-2022-0231

livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)

6.5CVSS6AI score0.00106EPSS

CVE•added 2022/02/06 11:15 a.m.•57 views

CVE-2022-0502

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

6.5CVSS5.3AI score0.00376EPSS

CVE•added 2021/12/08 11:15 a.m.•50 views

CVE-2021-4050

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

6.1CVSS6.2AI score0.00323EPSS

CVE•added 2021/12/16 10:15 a.m.•50 views

CVE-2021-4123

livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)

6.5CVSS6.5AI score0.00097EPSS

CVE•added 2021/12/07 11:15 a.m.•49 views

CVE-2021-4049

livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)

6.5CVSS5.4AI score0.00111EPSS

CVE•added 2021/12/26 12:15 p.m.•49 views

CVE-2021-4169

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

6.1CVSS5.8AI score0.00576EPSS

CVE•added 2017/07/17 1:18 p.m.•46 views

CVE-2017-1000059

Live Helper Chat version 2.06v and older is vulnerable to Cross-Site Scripting in the HTTP Header handling resulting in the execution of any user provided Javascript code in the session of other users.

6.1CVSS6.2AI score0.00347EPSS

CVE•added 2021/12/29 3:15 p.m.•41 views

CVE-2021-4176

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

6.1CVSS5.8AI score0.0024EPSS

CVE•added 2021/12/29 3:15 p.m.•37 views

CVE-2021-4175

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

6.6CVSS5.5AI score0.00234EPSS

CVE•added 2020/10/02 9:15 a.m.•34 views

CVE-2020-26135

Live Helper Chat before 3.44v allows reflected XSS via the setsettingajax PATH_INFO.

6.1CVSS5.9AI score0.00441EPSS

CVE•added 2021/12/28 9:15 a.m.•33 views

CVE-2021-4179

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

6.6CVSS5.5AI score0.00141EPSS

CVE•added 2025/07/21 7:15 p.m.•11 views

CVE-2025-51403

A stored cross-site scripting (XSS) vulnerability in the department assignment editing module of of Live Helper Chat v4.60 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Alias Nick parameter.

6.5CVSS5.7AI score0.00265EPSS