Filtered by vendor Livehelperchat Subscriptions
Filtered by product Livehelperchat Subscriptions
Total 5 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-27516 1 Livehelperchat 1 Livehelperchat 2024-11-21 9.8 Critical
Server-Side Template Injection (SSTI) vulnerability in livehelperchat before 4.34v, allows remote attackers to execute arbitrary code and obtain sensitive information via the search parameter in lhc_web/modules/lhfaq/faqweight.php.
CVE-2022-0387 1 Livehelperchat 1 Livehelperchat 2024-11-21 5.4 Medium
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVE-2022-0370 1 Livehelperchat 1 Livehelperchat 2024-11-21 5.4 Medium
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVE-2022-0253 1 Livehelperchat 1 Livehelperchat 2024-11-21 5.4 Medium
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2022-0245 1 Livehelperchat 1 Livehelperchat 2024-11-21 4.3 Medium
Cross-Site Request Forgery (CSRF) in GitHub repository livehelperchat/livehelperchat prior to 2.0.