Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Livehelperchat Subscribe
Filtered by product Live Helper Chat
Total 30 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-4177 1 Livehelperchat 1 Live Helper Chat 2022-01-06 5.0 MEDIUM 5.3 MEDIUM
livehelperchat is vulnerable to Generation of Error Message Containing Sensitive Information
CVE-2021-4169 1 Livehelperchat 1 Live Helper Chat 2021-12-30 4.3 MEDIUM 6.1 MEDIUM
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-4131 1 Livehelperchat 1 Live Helper Chat 2021-12-21 6.8 MEDIUM 8.8 HIGH
livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
CVE-2021-4132 1 Livehelperchat 1 Live Helper Chat 2021-12-21 3.5 LOW 5.4 MEDIUM
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-4123 1 Livehelperchat 1 Live Helper Chat 2021-12-20 4.3 MEDIUM 6.5 MEDIUM
livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
CVE-2021-4050 1 Livehelperchat 1 Live Helper Chat 2021-12-09 4.3 MEDIUM 6.1 MEDIUM
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-4049 1 Livehelperchat 1 Live Helper Chat 2021-12-08 4.3 MEDIUM 6.5 MEDIUM
livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
CVE-2020-26135 1 Livehelperchat 1 Live Helper Chat 2021-11-30 4.3 MEDIUM 6.1 MEDIUM
Live Helper Chat before 3.44v allows reflected XSS via the setsettingajax PATH_INFO.
CVE-2020-26134 1 Livehelperchat 1 Live Helper Chat 2020-10-08 4.3 MEDIUM 6.1 MEDIUM
Live Helper Chat before 3.44v allows stored XSS in chat messages with an operator via BBCode.
CVE-2017-1000059 1 Livehelperchat 1 Live Helper Chat 2017-07-20 4.3 MEDIUM 6.1 MEDIUM
Live Helper Chat version 2.06v and older is vulnerable to Cross-Site Scripting in the HTTP Header handling resulting in the execution of any user provided Javascript code in the session of other users.