CVE-2022-0375

MEDIUM6.5EPSS 0.36%

Cross-site Scripting in livehelperchat

發布日:2022/1/28修改日:2024/2/19

也稱為:GHSA-x3g3-jh26-76cfBIT-livehelperchat-2022-0375

描述

LiveHelperChat is vulnerable to Stored XSS at the Name field in the Admin themes of System configuration.

受影響套件(2)

Bitnami/livehelperchatfrom 0, < 3.93.0
Packagist/remdex/livehelperchatfrom 0, < 3.93

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	MEDIUM6.5	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

參考連結(4)