EPSS
Percentile
56.5%
remdex/livehelperchat is vulnerable to host header injection. The library does not properly validate the URL for password reset which allows a malicious attacker to generate a fake password link and take over the user account
github.com/livehelperchat/livehelperchat/commit/ce96791cb4c7420266b668fc234c211914259ba7
github.com/LiveHelperChat/livehelperchat/pull/1754
huntr.dev/bounties/a7e40fdf-a333-4a50-8a53-d11b16ce3ec2
huntr.dev/bounties/a7e40fdf-a333-4a50-8a53-d11b16ce3ec2/