Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
livehelperchat live helper chat vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2020-26134
Live Helper Chat prior to 3.44v allows stored XSS in chat messages with an operator via BBCode.
Livehelperchat Live Helper Chat
6.1
CVSSv3
CVE-2017-1000059
Live Helper Chat version 2.06v and older is vulnerable to Cross-Site Scripting in the HTTP Header handling resulting in the execution of any user provided Javascript code in the session of other users.
Livehelperchat Live Helper Chat
8.1
CVSSv3
CVE-2022-1191
SSRF on index.php/cobrowse/proxycss/ in GitHub repository livehelperchat/livehelperchat before 3.96.
Livehelperchat Live Helper Chat
6.1
CVSSv3
CVE-2021-4169
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Livehelperchat Live Helper Chat
8.1
CVSSv3
CVE-2022-1213
SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/livehelperchat before 3.67v. An attacker could make the application perform arbitrary requests, bypass CVE-2022-1191
Livehelperchat Live Helper Chat
6.1
CVSSv3
CVE-2022-1234
XSS in livehelperchat in GitHub repository livehelperchat/livehelperchat before 3.97. This vulnerability has the potential to deface websites, result in compromised user accounts, and can run malicious code on web pages, which can lead to a compromise of the user’s device.
Livehelperchat Live Helper Chat
10 Github repositories
8.2
CVSSv3
CVE-2022-1235
Weak secrethash can be brute-forced in GitHub repository livehelperchat/livehelperchat before 3.96.
Livehelperchat Live Helper Chat
6.5
CVSSv3
CVE-2021-4123
livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
Livehelperchat Live Helper Chat
8.8
CVSSv3
CVE-2021-4131
livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
Livehelperchat Live Helper Chat
5.4
CVSSv3
CVE-2021-4132
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Livehelperchat Live Helper Chat
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »