CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-1176 – Loose comparison causes IDOR on multiple endpoints in livehelperchat/livehelperchat
https://notcve.org/view.php?id=CVE-2022-1176
Loose comparison causes IDOR on multiple endpoints in GitHub repository livehelperchat/livehelperchat prior to 3.96. Una comparación floja causa IDOR en múltiples endpoints en el repositorio de GitHub livehelperchat/livehelperchat versiones anteriores a 3.96 • https://github.com/livehelperchat/livehelperchat/commit/72c0df160bfe9838c618652facef29af99392ce3 https://huntr.dev/bounties/3e30171b-c9bf-415c-82f1-6f55a44d09d3 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 8.7EPSS: 0%CPEs: 1EXPL: 1CVE-2022-1191 – SSRF on index.php/cobrowse/proxycss/ in livehelperchat/livehelperchat
https://notcve.org/view.php?id=CVE-2022-1191
SSRF on index.php/cobrowse/proxycss/ in GitHub repository livehelperchat/livehelperchat prior to 3.96. Una vulnerabilidad de tipo SSRF en index.php/cobrowse/proxycss/ en el repositorio de GitHub livehelperchat/livehelperchat versiones anteriores a 3.96 • https://github.com/livehelperchat/livehelperchat/commit/c41f283a2c1b46c42dd2af16ecbeaedd2fe1f5df https://huntr.dev/bounties/7264a2e1-17e7-4244-93e4-49ec14f282b3 • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 6.7EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0612 – Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat
https://notcve.org/view.php?id=CVE-2022-0612
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Almacenado en Packagist remdex/livehelperchat versiones anteriores a 3.93v • https://github.com/livehelperchat/livehelperchat/commit/4d4f1db1701f09177896a38e43fd0c693835f03b https://huntr.dev/bounties/eadcf7d2-a479-4901-abcc-1505d3f1b32f • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0502 – Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat
https://notcve.org/view.php?id=CVE-2022-0502
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Almacenado en Packagist remdex/livehelperchat versiones anteriores a 3.93v • https://github.com/livehelperchat/livehelperchat/commit/d3b107aaa8ec10816acc762d60e7321079c21706 https://huntr.dev/bounties/34f2aa30-de7f-432a-8749-b43d2774140f • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0395 – Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat
https://notcve.org/view.php?id=CVE-2022-0395
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Almacenado en Packagist remdex/livehelperchat versiones anteriores a 3.93v • https://github.com/livehelperchat/livehelperchat/commit/8fdb4f67ac1a095331aa0fb4630ef9dfe8e75dcb https://huntr.dev/bounties/36abbd6e-239e-4739-8c77-ba212b946a4a • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •