Vulnerabilities > Livehelperchat

DATE CVE VULNERABILITY TITLE RISK
2021-12-07 CVE-2021-4049 Unspecified vulnerability in Livehelperchat Live Helper Chat
livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
network
low complexity
livehelperchat
6.5
2020-10-02 CVE-2020-26135 Cross-site Scripting vulnerability in Livehelperchat Live Helper Chat
Live Helper Chat before 3.44v allows reflected XSS via the setsettingajax PATH_INFO.
network
low complexity
livehelperchat CWE-79
6.1
2020-10-02 CVE-2020-26134 Cross-site Scripting vulnerability in Livehelperchat Live Helper Chat
Live Helper Chat before 3.44v allows stored XSS in chat messages with an operator via BBCode.
network
low complexity
livehelperchat CWE-79
6.1
2017-07-17 CVE-2017-1000059 Cross-site Scripting vulnerability in Livehelperchat Live Helper Chat
Live Helper Chat version 2.06v and older is vulnerable to Cross-Site Scripting in the HTTP Header handling resulting in the execution of any user provided Javascript code in the session of other users.
network
low complexity
livehelperchat CWE-79
6.1