Shodan
Vulnerabilities
Vulnerable Software
Livehelperchat:  >> Live Helper Chat  >> 1.88  Security Vulnerabilities
CVE-2024-27516
Server-Side Template Injection (SSTI) vulnerability in livehelperchat before 4.34v, allows remote attackers to execute arbitrary code and obtain sensitive information via the search parameter in lhc_web/modules/lhfaq/faqweight.php.
CVSS Score
9.8
EPSS Score
0.031
Published
2024-02-29
CVE-2022-1530
Cross-site Scripting (XSS) in GitHub repository livehelperchat/livehelperchat prior to 3.99v. The attacker can execute malicious JavaScript on the application.
CVSS Score
3.8
EPSS Score
0.002
Published
2022-04-29
CVE-2022-0935
Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97.
CVSS Score
8.8
EPSS Score
0.004
Published
2022-04-07
CVE-2022-1234
XSS in livehelperchat in GitHub repository livehelperchat/livehelperchat prior to 3.97. This vulnerability has the potential to deface websites, result in compromised user accounts, and can run malicious code on web pages, which can lead to a compromise of the user’s device.
CVSS Score
8.8
EPSS Score
0.002
Published
2022-04-06
CVE-2022-1235
Weak secrethash can be brute-forced in GitHub repository livehelperchat/livehelperchat prior to 3.96.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-04-05
CVE-2022-1213
SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/livehelperchat prior to 3.67v. An attacker could make the application perform arbitrary requests, bypass CVE-2022-1191
CVSS Score
7.7
EPSS Score
0.001
Published
2022-04-05
CVE-2022-1176
Loose comparison causes IDOR on multiple endpoints in GitHub repository livehelperchat/livehelperchat prior to 3.96.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-03-31
CVE-2022-1191
SSRF on index.php/cobrowse/proxycss/ in GitHub repository livehelperchat/livehelperchat prior to 3.96.
CVSS Score
8.7
EPSS Score
0.002
Published
2022-03-31
CVE-2022-0612
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS Score
6.7
EPSS Score
0.003
Published
2022-02-16
CVE-2022-0502
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS Score
6.5
EPSS Score
0.004
Published
2022-02-06


Products
Pricing
Contact Us

Shodan ® - All rights reserved