Vulnerability Description
XSS in livehelperchat in GitHub repository livehelperchat/livehelperchat prior to 3.97. This vulnerability has the potential to deface websites, result in compromised user accounts, and can run malicious code on web pages, which can lead to a compromise of the user’s device.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Livehelperchat | Live Helper Chat | < 3.97 |
Related Weaknesses (CWE)
References
- https://github.com/livehelperchat/livehelperchat/commit/a09aa0d793818dc4cae78ac4PatchThird Party Advisory
- https://huntr.dev/bounties/0d235252-0882-4053-85c1-b41b94c814d4ExploitIssue TrackingPatch
- https://github.com/livehelperchat/livehelperchat/commit/a09aa0d793818dc4cae78ac4PatchThird Party Advisory
- https://huntr.dev/bounties/0d235252-0882-4053-85c1-b41b94c814d4ExploitIssue TrackingPatch
FAQ
What is CVE-2022-1234?
CVE-2022-1234 is a vulnerability with a CVSS score of 6.1 (MEDIUM). XSS in livehelperchat in GitHub repository livehelperchat/livehelperchat prior to 3.97. This vulnerability has the potential to deface websites, result in compromised user accounts, and can run malici...
How severe is CVE-2022-1234?
CVE-2022-1234 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-1234?
Check the references section above for vendor advisories and patch information. Affected products include: Livehelperchat Live Helper Chat.