Product:

Live_helper_chat

(Livehelperchat)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 29
Date Id Summary Products Score Patch Annotated
2022-04-06 CVE-2022-1234 XSS in livehelperchat in GitHub repository livehelperchat/livehelperchat prior to 3.97. This vulnerability has the potential to deface websites, result in compromised user accounts, and can run malicious code on web pages, which can lead to a compromise of the user’s device. Live_helper_chat 6.1
2022-04-29 CVE-2022-1530 Cross-site Scripting (XSS) in GitHub repository livehelperchat/livehelperchat prior to 3.99v. The attacker can execute malicious JavaScript on the application. Live_helper_chat 6.1
2022-04-07 CVE-2022-0935 Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97. Live_helper_chat 8.8
2022-04-05 CVE-2022-1213 SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/livehelperchat prior to 3.67v. An attacker could make the application perform arbitrary requests, bypass CVE-2022-1191 Live_helper_chat 8.1
2022-04-05 CVE-2022-1235 Weak secrethash can be brute-forced in GitHub repository livehelperchat/livehelperchat prior to 3.96. Live_helper_chat 8.2
2022-03-31 CVE-2022-1176 Loose comparison causes IDOR on multiple endpoints in GitHub repository livehelperchat/livehelperchat prior to 3.96. Live_helper_chat 7.5
2022-03-31 CVE-2022-1191 SSRF on index.php/cobrowse/proxycss/ in GitHub repository livehelperchat/livehelperchat prior to 3.96. Live_helper_chat 8.1
2022-01-28 CVE-2022-0394 Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v. Live_helper_chat 5.4
2022-01-28 CVE-2022-0395 Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v. Live_helper_chat 5.4
2022-02-16 CVE-2022-0612 Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v. Live_helper_chat 5.4