Vulnerabilities > Livehelperchat

DATE CVE VULNERABILITY TITLE RISK
2022-04-29 CVE-2022-1530 Cross-site Scripting vulnerability in Livehelperchat Live Helper Chat
Cross-site Scripting (XSS) in GitHub repository livehelperchat/livehelperchat prior to 3.99v.
network
low complexity
livehelperchat CWE-79
6.1
2022-04-07 CVE-2022-0935 Improper Encoding or Escaping of Output vulnerability in Livehelperchat Live Helper Chat
Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97.
network
low complexity
livehelperchat CWE-116
8.8
2022-04-06 CVE-2022-1234 Cross-site Scripting vulnerability in Livehelperchat Live Helper Chat
XSS in livehelperchat in GitHub repository livehelperchat/livehelperchat prior to 3.97.
network
low complexity
livehelperchat CWE-79
6.1
2022-04-05 CVE-2022-1235 Use of Password Hash With Insufficient Computational Effort vulnerability in Livehelperchat Live Helper Chat
Weak secrethash can be brute-forced in GitHub repository livehelperchat/livehelperchat prior to 3.96.
network
low complexity
livehelperchat CWE-916
8.2
2022-04-05 CVE-2022-1213 Server-Side Request Forgery (SSRF) vulnerability in Livehelperchat Live Helper Chat
SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/livehelperchat prior to 3.67v.
network
low complexity
livehelperchat CWE-918
8.1
2022-03-31 CVE-2022-1176 Type Confusion vulnerability in Livehelperchat Live Helper Chat
Loose comparison causes IDOR on multiple endpoints in GitHub repository livehelperchat/livehelperchat prior to 3.96.
network
low complexity
livehelperchat CWE-843
7.5
2022-03-31 CVE-2022-1191 Server-Side Request Forgery (SSRF) vulnerability in Livehelperchat Live Helper Chat
SSRF on index.php/cobrowse/proxycss/ in GitHub repository livehelperchat/livehelperchat prior to 3.96.
network
low complexity
livehelperchat CWE-918
8.1
2022-02-16 CVE-2022-0612 Cross-site Scripting vulnerability in Livehelperchat Live Helper Chat
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
network
low complexity
livehelperchat CWE-79
5.4
2022-02-06 CVE-2022-0502 Cross-site Scripting vulnerability in Livehelperchat Live Helper Chat
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
network
low complexity
livehelperchat CWE-79
5.4
2022-01-28 CVE-2022-0395 Cross-site Scripting vulnerability in Livehelperchat Live Helper Chat
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
network
low complexity
livehelperchat CWE-79
5.4