Livehelperchat: Security Vulnerabilities
Weak secrethash can be brute-forced in GitHub repository livehelperchat/livehelperchat prior to 3.96.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-04-05
SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/livehelperchat prior to 3.67v. An attacker could make the application perform arbitrary requests, bypass CVE-2022-1191
CVSS Score
7.7
EPSS Score
0.001
Published
2022-04-05
Loose comparison causes IDOR on multiple endpoints in GitHub repository livehelperchat/livehelperchat prior to 3.96.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-03-31
SSRF on index.php/cobrowse/proxycss/ in GitHub repository livehelperchat/livehelperchat prior to 3.96.
CVSS Score
8.7
EPSS Score
0.002
Published
2022-03-31
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS Score
6.7
EPSS Score
0.003
Published
2022-02-16
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS Score
6.5
EPSS Score
0.004
Published
2022-02-06
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS Score
6.5
EPSS Score
0.004
Published
2022-01-28
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS Score
5.3
EPSS Score
0.003
Published
2022-01-28
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS Score
7.1
EPSS Score
0.003
Published
2022-01-27
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS Score
6.3
EPSS Score
0.003
Published
2022-01-27