EPSS
Percentile
21.4%
remdex/livehelperchat is vulnerable to cross-site scripting (XSS) attacks. Name and Surname fields in the user account page are not properly escaped allowing an authenticated attacker to insert arbitrary javascript to victim’s browser.
Name
Surname
user account page
github.com/livehelperchat/livehelperchat/commit/8fdb4f67ac1a095331aa0fb4630ef9dfe8e75dcb
huntr.dev/bounties/36abbd6e-239e-4739-8c77-ba212b946a4a
huntr.dev/bounties/36abbd6e-239e-4739-8c77-ba212b946a4a/