pkg:Bitnami/livehelperchat

29 total CVEsHIGH8MEDIUM21

✅ Check your installed version

All known vulnerabilities

  • HIGH8.8CVE-2022-0935Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97.
    from 0, < 3.97.0
  • HIGH8.8CVE-2022-1234XSS in livehelperchat in GitHub repository livehelperchat/livehelperchat prior to 3.97.
    from 0, < 3.97.0
  • HIGH8.8CVE-2021-4131livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
    from 0, < 2.0.0
  • HIGH8.7CVE-2022-1191SSRF on index.php/cobrowse/proxycss/ in GitHub repository livehelperchat/livehelperchat prior to 3.96.
    from 0, < 3.96.0
  • HIGH7.7CVE-2022-1213Server side request forgery in LiveHelperChat
    from 0, < 3.97.0
  • HIGH7.5CVE-2022-1235Weak password hash in LiveHelperChat
    from 0, < 3.96.0
  • HIGH7.5CVE-2022-1176Type Confusion in LiveHelperChat
    from 0, < 3.96.0
  • HIGH7.3CVE-2022-0083User enumeration in livehelperchat
    from 0, < 3.91.0
  • MEDIUM6.7CVE-2022-0612Cross-site Scripting in livehelperchat
    from 0, < 3.92.0
  • MEDIUM6.6CVE-2021-4175livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    from 0, < 3.91.0
  • MEDIUM6.6CVE-2021-4179livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    from 0, < 3.91.0
  • MEDIUM6.5CVE-2022-0374Cross-site Scripting in livehelperchat
    from 0, < 3.93.0
  • MEDIUM6.5CVE-2022-0375Cross-site Scripting in livehelperchat
    from 0, < 3.93.0
  • MEDIUM6.5CVE-2022-0231Cross-Site Request Forgery (CSRF) in livehelperchat
    from 0, < 3.91.0
  • MEDIUM6.5CVE-2022-0266Authorization Bypass Through User-Controlled Key in LiveHelperChat
    from 0, < 3.92.0
  • MEDIUM6.5CVE-2021-4123livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
    from 0, < 2.0.0
  • MEDIUM6.1CVE-2020-26134Live Helper Chat before 3.44v allows stored XSS in chat messages with an operator via BBCode.
    from 0, < 3.44.0
  • MEDIUM6.1CVE-2020-26135Live Helper Chat before 3.44v allows reflected XSS via the setsettingajax PATH_INFO.
    from 0, < 3.44.0
  • MEDIUM6.1CVE-2022-1530An attacker can execute malicious javascript in Live Helper Chat
    from 0, < 3.99.0
  • MEDIUM6.1CVE-2021-4050Cross site scripting in remdex/livehelperchat
  • MEDIUM5.4CVE-2021-4169livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    from 0, < 3.90.0
  • MEDIUM5.4CVE-2021-4176livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    from 0, < 3.91.0
  • MEDIUM5.4CVE-2022-0502Cross-site Scripting in LiveHelperChat
    from 0, < 3.92.0
  • MEDIUM5.4CVE-2022-0394Cross-site Scripting in LiveHelperChat
    from 0, < 3.93.0
  • MEDIUM5.4CVE-2022-0395Cross-site Scripting in LiveHelperChat
    from 0, < 3.93.0
  • MEDIUM5.4CVE-2021-4132livehelperchat is vulnerable to Cross-site Scripting
    from 0, < 3.90.0
  • MEDIUM4.3CVE-2021-4177livehelperchat is vulnerable to Generation of Error Message Containing Sensitive Information
    from 0, < 3.91.0
  • MEDIUM4.3CVE-2022-0226Cross-Site Request Forgery (CSRF) in livehelperchat
    from 0, < 2.0.0
  • MEDIUM4.3CVE-2021-4049Cross-Site Request Forgery in remdex/livehelperchat
    from 0, < 2.0.0