Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
livezilla livezilla vulnerabilities and exploits
(subscribe to this query)
9.6
CVSSv3
CVE-2020-9758
An issue exists in chat.php in LiveZilla Live Chat 8.0.1.3 (Helpdesk). A blind JavaScript injection lies in the name parameter. Triggering this can fetch the username and passwords of the helpdesk employees in the URI. This leads to a privilege escalation, from unauthenticated to...
Livezilla Livezilla
1 Github repository
9.8
CVSSv3
CVE-2013-6225
LiveZilla 5.0.1.4 has a Remote Code Execution vulnerability
Livezilla Livezilla 5.0.1.4
1 EDB exploit
9.8
CVSSv3
CVE-2019-12960
LiveZilla Server prior to 8.0.1.1 is vulnerable to SQL Injection in functions.internal.build.inc.php via the parameter p_dt_s_d.
Livezilla Livezilla
8.8
CVSSv3
CVE-2019-12961
LiveZilla Server prior to 8.0.1.1 is vulnerable to CSV Injection in the Export Function.
Livezilla Livezilla
6.1
CVSSv3
CVE-2019-12962
LiveZilla Server prior to 8.0.1.1 is vulnerable to XSS in mobile/index.php via the Accept-Language HTTP header.
Livezilla Livezilla
6.1
CVSSv3
CVE-2019-12963
LiveZilla Server prior to 8.0.1.1 is vulnerable to XSS in the chat.php Create Ticket Action.
Livezilla Livezilla
6.1
CVSSv3
CVE-2019-12964
LiveZilla Server prior to 8.0.1.1 is vulnerable to XSS in the ticket.php Subject.
Livezilla Livezilla
9.8
CVSSv3
CVE-2019-12939
LiveZilla Server prior to 8.0.1.1 is vulnerable to SQL Injection in server.php via the p_ext_rse parameter.
Livezilla Livezilla
5.9
CVSSv3
CVE-2019-12940
LiveZilla Server prior to 8.0.1.1 is vulnerable to Denial Of Service (memory consumption) in knowledgebase.php via a large integer value of the depth parameter.
Livezilla Livezilla
6.1
CVSSv3
CVE-2018-10810
chat/mobile/index.php in LiveZilla Live Chat 7.0.9.5 and prior is affected by Cross-Site Scripting via the Accept-Language HTTP header.
Livezilla Livezilla
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »