Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chat vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-32504
Cross-Site Request Forgery (CSRF) vulnerability in Kainex Wise Chat.This issue affects Wise Chat: from n/a up to and including 3.1.3.
Kaine Wise Chat
4.3
CVSSv2
CVE-2010-2256
Multiple cross-site scripting (XSS) vulnerabilities in Pay Per Minute Video Chat Script 2.0 and 2.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) id parameter to admin/memberviewdetails.php and the (2) model parameter to videos.php.
Payperviewvideosoftware Pay Per Minute Video Chat Script 2.0
Payperviewvideosoftware Pay Per Minute Video Chat Script 2.1
1 EDB exploit
7.5
CVSSv2
CVE-2010-2257
SQL injection vulnerability in index_ie.php in Pay Per Minute Video Chat Script 2.0 and 2.1 allows remote malicious users to execute arbitrary SQL commands via the page parameter.
Payperviewvideosoftware Pay Per Minute Video Chat Script 2.0
Payperviewvideosoftware Pay Per Minute Video Chat Script 2.1
1 EDB exploit
NA
CVE-2023-51361
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ginger Plugins Sticky Chat Widget: Click to chat, SMS, Email, Messages, Call Button, Live Chat and Live Support Button allows Stored XSS.This issue affects Sticky Chat ...
Gingerplugins Sticky Chat Widget
4.3
CVSSv2
CVE-2022-0226
livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
Livehelperchat Live Helper Chat
6
CVSSv2
CVE-2022-0266
Authorization Bypass Through User-Controlled Key in Packagist remdex/livehelperchat before 3.92v.
Livehelperchat Live Helper Chat
3.5
CVSSv2
CVE-2022-0374
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat before 3.93v.
Livehelperchat Live Helper Chat
3.5
CVSSv2
CVE-2022-0395
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat before 3.93v.
Livehelperchat Live Helper Chat
4.3
CVSSv2
CVE-2021-4050
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Livehelperchat Live Helper Chat -
NA
CVE-2022-4480
The Click to Chat WordPress plugin prior to 3.18.1 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used a...
Holithemes Click To Chat
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »